Hi!

The in libnss-ldap can be exploted as

* Denial of service - all that is needed is to do two authentication
  attempts at the same time and the samba will become unresponsive.
* It is also possible (at least theoretical) that two users may be assigned
  each others credentials.

For this reason I think that a bugfix for this should be a candidate
for a security update of

Package: libnss-ldap
Version: 238-1.2

regards Petter





--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Reply via email to