Synopsis:	Important: openldap security update
Issue date:	2008-07-09
CVE Names:	CVE-2008-2952

A denial of service flaw was found in the way the OpenLDAP slapd daemon
processed certain network messages. An unauthenticated remote attacker
could send a specially crafted request that would crash the slapd daemon.
(CVE-2008-2952)

SL 4.x

     SRPMS:
openldap-2.2.13-8.el4_6.5.src.rpm
     i386:
compat-openldap-2.1.30-8.el4_6.5.i386.rpm
openldap-2.2.13-8.el4_6.5.i386.rpm
openldap-clients-2.2.13-8.el4_6.5.i386.rpm
openldap-devel-2.2.13-8.el4_6.5.i386.rpm
openldap-servers-2.2.13-8.el4_6.5.i386.rpm
openldap-servers-sql-2.2.13-8.el4_6.5.i386.rpm
     x86_64:
compat-openldap-2.1.30-8.el4_6.5.i386.rpm
compat-openldap-2.1.30-8.el4_6.5.x86_64.rpm
openldap-2.2.13-8.el4_6.5.i386.rpm
openldap-2.2.13-8.el4_6.5.x86_64.rpm
openldap-clients-2.2.13-8.el4_6.5.x86_64.rpm
openldap-devel-2.2.13-8.el4_6.5.x86_64.rpm
openldap-servers-2.2.13-8.el4_6.5.x86_64.rpm
openldap-servers-sql-2.2.13-8.el4_6.5.x86_64.rpm

SL 5.x

     SRPMS:
openldap-2.3.27-8.el5_2.4.src.rpm
     i386:
compat-openldap-2.3.27_2.2.29-8.el5_2.4.i386.rpm
openldap-2.3.27-8.el5_2.4.i386.rpm
openldap-clients-2.3.27-8.el5_2.4.i386.rpm
openldap-devel-2.3.27-8.el5_2.4.i386.rpm
openldap-servers-2.3.27-8.el5_2.4.i386.rpm
openldap-servers-sql-2.3.27-8.el5_2.4.i386.rpm
     x86_64:
compat-openldap-2.3.27_2.2.29-8.el5_2.4.i386.rpm
compat-openldap-2.3.27_2.2.29-8.el5_2.4.x86_64.rpm
openldap-2.3.27-8.el5_2.4.i386.rpm
openldap-2.3.27-8.el5_2.4.x86_64.rpm
openldap-clients-2.3.27-8.el5_2.4.x86_64.rpm
openldap-devel-2.3.27-8.el5_2.4.i386.rpm
openldap-devel-2.3.27-8.el5_2.4.x86_64.rpm
openldap-servers-2.3.27-8.el5_2.4.x86_64.rpm
openldap-servers-sql-2.3.27-8.el5_2.4.x86_64.rpm

-Connie Sieh
-Troy Dawson