Bug 246010 - security/vuxml slapd CVE-2020-12243
Summary: security/vuxml slapd CVE-2020-12243
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: Xin LI
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2020-04-28 19:26 UTC by rob2g2
Modified: 2020-04-29 01:35 UTC (History)
2 users (show)

See Also:
delphij: maintainer-feedback+


Attachments
diff for vuxml (870 bytes, patch)
2020-04-28 19:27 UTC, rob2g2
no flags Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description rob2g2 2020-04-28 19:26:22 UTC
nested filters in query lead to stack overflow
Comment 1 rob2g2 2020-04-28 19:27:21 UTC
Created attachment 213895 [details]
diff for vuxml
Comment 2 commit-hook freebsd_committer 2020-04-29 01:31:12 UTC
A commit references this bug:

Author: delphij
Date: Wed Apr 29 01:31:05 UTC 2020
New revision: 533303
URL: https://svnweb.freebsd.org/changeset/ports/533303

Log:
  net/openldap24-server: update to 2.4.50.

  PR:		246010
  MFH:		2020Q2
  Security:	CVE-2020-12243

Changes:
  head/net/openldap24-server/Makefile
  head/net/openldap24-server/distinfo
Comment 3 commit-hook freebsd_committer 2020-04-29 01:33:14 UTC
A commit references this bug:

Author: delphij
Date: Wed Apr 29 01:33:11 UTC 2020
New revision: 533304
URL: https://svnweb.freebsd.org/changeset/ports/533304

Log:
  MFH: r533303

  net/openldap24-server: update to 2.4.50.

  PR:		246010
  Security:	CVE-2020-12243
  Approved by:	ports-secteam

Changes:
_U  branches/2020Q2/
  branches/2020Q2/net/openldap24-server/Makefile
  branches/2020Q2/net/openldap24-server/distinfo
Comment 4 Xin LI freebsd_committer 2020-04-29 01:35:45 UTC
Committed, thanks!