製品・ソフトウェアに関する情報

JVN脆弱性詳細

OpenLDAP の IA5StringNormalize 関数におけるサービス運用妨害 (DoS) の脆弱性

Title	OpenLDAP の IA5StringNormalize 関数におけるサービス運用妨害 (DoS) の脆弱性
Summary	OpenLDAP の schema_init.c 内の IA5StringNormalize 関数には、smr_normalize 関数を適切に処理しないため、サービス運用妨害 (DoS) 状態となる脆弱性が存在します。
Possible impacts	第三者により、Null ポインタデリファレンスを誘発する zero-length RDN destination 文字列が付与された modrdn コールを介して、サービス運用妨害 (DoS) にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	June 30, 2010, midnight
Registration Date	Aug. 11, 2010, 6:32 p.m.
Last Update	Jan. 14, 2011, 2:45 p.m.

CVSS2.0 : 警告
Score	5
Vector	AV:N/AC:L/Au:N/C:N/I:N/A:P

Affected System

レッドハット

Red Hat Enterprise Linux 5 (server)

Red Hat Enterprise Linux Desktop 5.0 (client)

RHEL Desktop Workstation 5 (client)

ターボリナックス

Turbolinux Appliance Server 2.0

Turbolinux Appliance Server 3.0

Turbolinux Appliance Server 3.0 (x64)

Turbolinux Client 2008

Turbolinux Server 10

Turbolinux Server 10 (x64)

Turbolinux Server 11

Turbolinux Server 11 (x64)

サイバートラスト株式会社

Asianux Server 3 (x86)

Asianux Server 3 (x86-64)

アップル

Apple Mac OS X v10.6 から v10.6.4

Apple Mac OS X Server v10.6 から v10.6.4

OpenLDAP Foundation

OpenLDAP 2.4.22

VMware

VMware ESX 3.0.3

VMware ESX 3.5

VMware ESX 4.0

VMware ESX 4.1

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2010-0212	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0212
National Vulnerability Database (NVD)
2	CVE-2010-0212	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0212

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-264	https://jvndb.jvn.jp/ja/cwe/CWE-264.html

ベンダー情報

No	Name	URL
Apple Security Updates
1	HT4435	http://support.apple.com/kb/HT4435
Apple セキュリティアップデート
2	HT4435	http://support.apple.com/kb/HT4435?viewlocale=ja_JP
Asianux Technical Support Network
3	openldap-2.3.43-12.1.0.1.AXS3	https://tsn.miraclelinux.com/tsn_local/index.php?m=errata&a=detail&eid=1213
OpenLDAP Issue Tracking System
4	ITS#6570	http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6570
Red Hat Security Advisory
5	RHSA-2010:0542	https://rhn.redhat.com/errata/RHSA-2010-0542.html
Release Changes
6	Release Changes	http://www.openldap.org/software/release/changes.html
Turbolinux Security Advisory
7	TLSA-2010-31	http://www.turbolinux.co.jp/security/2010/TLSA-2010-31j.txt
VMware Security Advisories
8	VMSA-2011-0001	http://www.vmware.com/security/advisories/VMSA-2011-0001.html

その他

No	Name	URL
CERT-FI
1	CERT-FI Advisory on OpenLDAP	http://www.cert.fi/en/reports/2010/vulnerability383115.html
JVN
2	JVNVU#129889	http://jvn.jp/cert/JVNVU129889
3	JVNVU#331391	http://jvn.jp/cert/JVNVU331391
Secunia Advisory
4	SA40639	http://secunia.com/advisories/40639
5	SA40687	http://secunia.com/advisories/40687
SecurityFocus
6	41770	http://www.securityfocus.com/bid/41770
SecurityTracker
7	1024221	http://www.securitytracker.com/id?1024221
VUPEN Security
8	VUPEN/ADV-2010-1849	http://www.vupen.com/english/advisories/2010/1849
9	VUPEN/ADV-2010-1858	http://www.vupen.com/english/advisories/2010/1858

Change Log

No	Changed Details	Date of change
0	[2010年08月11日] 掲載 [2010年09月27日] 影響を受けるシステム：ターボリナックス (TLSA-2010-31) の情報を追加ベンダ情報：ターボリナックス (TLSA-2010-31) を追加 [2010年11月26日] 影響を受けるシステム：アップル (HT4435) の情報を追加ベンダ情報：アップル (HT4435) を追加 [2011年01月14日] 影響を受けるシステム：VMware (VMSA-2011-0001) の情報を追加ベンダ情報：VMware (VMSA-2011-0001) を追加	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2010-0212

Summary	OpenLDAP 2.4.22 allows remote attackers to cause a denial of service (crash) via a modrdn call with a zero-length RDN destination string, which is not properly handled by the smr_normalize function and triggers a NULL pointer dereference in the IA5StringNormalize function in schema_init.c, as demonstrated using the Codenomicon LDAPv3 test suite.
Publication Date	July 28, 2010, 9:48 p.m.
Registration Date	Jan. 29, 2021, 10:56 a.m.
Last Update	Nov. 21, 2024, 10:11 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:openldap:openldap:2.4.22:::::::*

Related information, measures and tools

No	URL	タグ
1	http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
2	http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
3	http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735
4	http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735
5	http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
6	http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
7	http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html
8	http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html
9	http://secunia.com/advisories/40639	Vendor Advisory
10	http://secunia.com/advisories/40639	Vendor Advisory
11	http://secunia.com/advisories/40687	Vendor Advisory
12	http://secunia.com/advisories/40687	Vendor Advisory
13	http://secunia.com/advisories/42787
14	http://secunia.com/advisories/42787
15	http://security.gentoo.org/glsa/glsa-201406-36.xml
16	http://security.gentoo.org/glsa/glsa-201406-36.xml
17	http://support.apple.com/kb/HT4435
18	http://support.apple.com/kb/HT4435
19	http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6570	Exploit
20	http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6570	Exploit
21	http://www.redhat.com/support/errata/RHSA-2010-0542.html
22	http://www.redhat.com/support/errata/RHSA-2010-0542.html
23	http://www.securityfocus.com/archive/1/515545/100/0/threaded
24	http://www.securityfocus.com/archive/1/515545/100/0/threaded
25	http://www.securityfocus.com/bid/41770	Exploit Patch
26	http://www.securityfocus.com/bid/41770	Exploit Patch
27	http://www.securitytracker.com/id?1024221
28	http://www.securitytracker.com/id?1024221
29	http://www.vmware.com/security/advisories/VMSA-2011-0001.html
30	http://www.vmware.com/security/advisories/VMSA-2011-0001.html
31	http://www.vupen.com/english/advisories/2010/1849	Patch Vendor Advisory
32	http://www.vupen.com/english/advisories/2010/1849	Patch Vendor Advisory
33	http://www.vupen.com/english/advisories/2010/1858	Vendor Advisory
34	http://www.vupen.com/english/advisories/2010/1858	Vendor Advisory
35	http://www.vupen.com/english/advisories/2011/0025
36	http://www.vupen.com/english/advisories/2011/0025

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-264	認可・権限・アクセス制御	https://cwe.mitre.org/data/definitions/264.html