openldap-bugs

openldap-bugs@openldap.org

1 participants
20895 discussions

[Issue 9583] New: possible memory corruption in avl_buildlist
by openldap-its＠openldap.org 16 Jun '21

16 Jun '21

https://bugs.openldap.org/show_bug.cgi?id=9583 Issue ID: 9583 Summary: possible memory corruption in avl_buildlist Product: OpenLDAP Version: unspecified Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: libraries Assignee: bugs(a)openldap.org Reporter: grapvar(a)gmail.com Target Milestone: --- In the excerpt below: if avl_maxlist is large enough then address (NULL + avl_maxlist * sizeof(pointer)) may be mapped into the address space. If ber_memrealloc fails, avl_list[avl_maxlist]=… will corrupt program state before it eventually crash. libraries/libldap/avl.c: > static int slots; > static int > avl_buildlist( void* data, … ) { > if ( avl_list == 0 ) { > slots = 100; > avl_list = ber_memalloc(100 * sizeof(void*)); > … > } else if ( avl_maxlist == slots ) { > slots += 100; > avl_list = ber_memrealloc( avl_list, slots * sizeof(void*)); > … > } > avl_list[ avl_maxlist++ ] = data; Be advised please that this issue has been reported by accidental visitor, from a developer point of view, not a user point of view, so I won't define, provide or construct any “valid use case”. -- You are receiving this mail because: You are on the CC list for the issue.

1 4

[Issue 8333] NAME 'internationalISDNNumber' (RFC 4519)
by openldap-its＠openldap.org 16 Jun '21

16 Jun '21

https://bugs.openldap.org/show_bug.cgi?id=8333 Quanah Gibson-Mount <quanah(a)openldap.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Keywords|has_patch | -- You are receiving this mail because: You are on the CC list for the issue.

1 0

[Issue 8333] NAME 'internationalISDNNumber' (RFC 4519)
by openldap-its＠openldap.org 16 Jun '21

16 Jun '21

https://bugs.openldap.org/show_bug.cgi?id=8333 Quanah Gibson-Mount <quanah(a)openldap.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|IN_PROGRESS |RESOLVED Resolution|--- |FIXED --- Comment #7 from Quanah Gibson-Mount <quanah(a)openldap.org> --- Commits: • 362fbedc by Quanah Gibson-Mount at 2021-06-15T18:18:03+00:00 ITS#8333 - Update internationalISDNNumber for RFC4519 -- You are receiving this mail because: You are on the CC list for the issue.

1 0

[Issue 8695] _sleep is deprecated
by openldap-its＠openldap.org 15 Jun '21

15 Jun '21

https://bugs.openldap.org/show_bug.cgi?id=8695 Quanah Gibson-Mount <quanah(a)openldap.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|UNCONFIRMED |IN_PROGRESS Ever confirmed|0 |1 --- Comment #2 from Quanah Gibson-Mount <quanah(a)openldap.org> --- https://git.openldap.org/openldap/openldap/-/merge_requests/345 -- You are receiving this mail because: You are on the CC list for the issue.

1 0

[Issue 8333] NAME 'internationalISDNNumber' (RFC 4519)
by openldap-its＠openldap.org 15 Jun '21

15 Jun '21

https://bugs.openldap.org/show_bug.cgi?id=8333 Quanah Gibson-Mount <quanah(a)openldap.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Ever confirmed|0 |1 Status|UNCONFIRMED |IN_PROGRESS --- Comment #6 from Quanah Gibson-Mount <quanah(a)openldap.org> --- https://git.openldap.org/openldap/openldap/-/merge_requests/344 -- You are receiving this mail because: You are on the CC list for the issue.

1 0

[Issue 9579] New: ldif_read_record(): incorrect parsing of EOF
by openldap-its＠openldap.org 14 Jun '21

14 Jun '21

https://bugs.openldap.org/show_bug.cgi?id=9579 Issue ID: 9579 Summary: ldif_read_record(): incorrect parsing of EOF Product: OpenLDAP Version: unspecified Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: libraries Assignee: bugs(a)openldap.org Reporter: grapvar(a)gmail.com Target Milestone: --- libraries/libldap/ldif.c:829 > /* Squash \r\n to \n */ > if ( len > 1 && line[len-2] == '\r' ) { > len--; > line[len-1] = '\n'; > } assumes “line” buffer has always been terminated by \n, and makes invalid transforms of these ends of file: ...X\r ~> ...X\r\n ...X\rY ~> ...X\n -- You are receiving this mail because: You are on the CC list for the issue.

1 3

[Issue 9512] New: Add ability to restrict by client ip address in ACLs
by openldap-its＠openldap.org 14 Jun '21

14 Jun '21

https://bugs.openldap.org/show_bug.cgi?id=9512 Issue ID: 9512 Summary: Add ability to restrict by client ip address in ACLs Product: OpenLDAP Version: 2.5 Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: slapd Assignee: bugs(a)openldap.org Reporter: quanah(a)openldap.org Target Milestone: --- Currently it is possible via ACLs to enforce restrictions based on which slapd host interface is connected to via the peername parameter. However, it's not possible to enforce ACL restrictions based on the IP address used by the client. This would be a useful feature when wanting to restrict certain DNs to only being able to have access if they connect from a certain IP or IP range. -- You are receiving this mail because: You are on the CC list for the issue.

1 5

[Issue 6198] Authorization for extensions
by openldap-its＠openldap.org 14 Jun '21

14 Jun '21

https://bugs.openldap.org/show_bug.cgi?id=6198 Quanah Gibson-Mount <quanah(a)openldap.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Blocks| |9211 Referenced Issues: https://bugs.openldap.org/show_bug.cgi?id=9211 [Issue 9211] Relax control is not consistently access-restricted -- You are receiving this mail because: You are on the CC list for the issue.

1 0

[Issue 9157] return additional error code information when OPT_X_TLS_NEWCTX fails
by openldap-its＠openldap.org 14 Jun '21

14 Jun '21

https://bugs.openldap.org/show_bug.cgi?id=9157 Quanah Gibson-Mount <quanah(a)openldap.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|bugs(a)openldap.org |hyc(a)openldap.org --- Comment #2 from Quanah Gibson-Mount <quanah(a)openldap.org> --- Need to see if this is possible, see also ITS#9474 -- You are receiving this mail because: You are on the CC list for the issue.

1 0

[Issue 9122] slapadd with dry run fails with back-mdb
by openldap-its＠openldap.org 14 Jun '21

14 Jun '21

https://bugs.openldap.org/show_bug.cgi?id=9122 Quanah Gibson-Mount <quanah(a)openldap.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|bugs(a)openldap.org |ondra(a)mistotebe.net -- You are receiving this mail because: You are on the CC list for the issue.

1 0

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

openldap-bugs