[Pkg-openldap-devel] Bug#572005: Bug#572005: openldap: CVE-2009-2408 certificate spoofing via null characters
Quanah Gibson-Mount
quanah at zimbra.com
Mon Mar 1 00:01:21 UTC 2010
--On Sunday, February 28, 2010 4:09 PM -0500 Michael Gilbert
<michael.s.gilbert at gmail.com> wrote:
> Package: openldap
> Version: 2.4.17-2.1
> Severity: important
> Tags: security
>
> Hi, the following CVE (Common Vulnerabilities & Exposures) id was
> published for openldap.
The Debian build links against GnuTLS, not MozNSS, so it isn't vulnerable
to this issue.
--Quanah
--
Quanah Gibson-Mount
Principal Software Engineer
Zimbra, Inc
--------------------
Zimbra :: the leader in open source messaging and collaboration
More information about the Pkg-openldap-devel
mailing list