CVE-2007-5794
CVE-2007-5794
Race condition in nss_ldap, when used in applications that are linked against the pthread library and fork after a call to nss_ldap, might send user data to the wrong process because of improper handling of the LDAP connection. NOTE: this issue was originally reported for Dovecot with the wrong mailboxes being returned, but other applications might also be affected.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=453868http://bugs.gentoo.org/show_bug.cgi?id=198390http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=154314https://bugzilla.redhat.com/show_bug.cgi?id=367461http://secunia.com/advisories/27670http://secunia.com/advisories/27768http://secunia.com/advisories/27839http://secunia.com/advisories/28061http://secunia.com/advisories/28838http://secunia.com/advisories/29083http://secunia.com/advisories/30352