Package: openldap2.2 Severity: important Tags: security Inproper enforcement of TLS encryption in master/slave referral may reveal sensitive data, as it gets transmitted unencrypted and may be sniffed.
For details please see: http://bugzilla.padl.com/show_bug.cgi?id=210 (it contains a patch) https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=161990 Please refer to CAN-2005-2069 when fixing this, it makes tracking a lot easier. Cheers, Moritz -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.12-rc5 Locale: LANG=C, [EMAIL PROTECTED] (charmap=ISO-8859-15) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
