Security Advisory Moderate: nss_ldap security update

Advisory: RHSA-2006:0719-5
Type: Security Advisory
Severity: Moderate
Issued on: 2006-11-15
Last updated on: 2006-11-15
Affected Products: Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux WS (v. 4)
OVAL: com.redhat.rhsa-20060719.xml
CVEs (cve.mitre.org): CVE-2006-5170

Details

Updated nss_ldap packages that fix a security flaw are now available for
Red Hat Enterprise Linux 4.

This update has been rated as having moderate security impact by the Red Hat
Security Response Team.

nss_ldap is a set of C library extensions that allow X.500 and LDAP
directory servers to be used as primary sources for aliases, ethers,
groups, hosts, networks, protocols, users, RPCs, services, and shadow
passwords.

A flaw was found in the way nss_ldap handled a PasswordPolicyResponse
control sent by an LDAP server. If an LDAP server responded to an
authentication request with a PasswordPolicyResponse control, it was
possible for an application using nss_ldap to improperly authenticate
certain users. (CVE-2006-5170)

This flaw was only exploitable within applications which did not properly
process nss_ldap error messages. Only xscreensaver is currently known to
exhibit this behavior.

All users of nss_ldap should upgrade to these updated packages, which
contain a backported patch that resolves this issue.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Updated packages

Red Hat Desktop (v. 4)
SRPMS:
nss_ldap-226-17.src.rpm
File outdated by:  RHBA-2009:0986		     8fdad6a352014e9c95f6640896bf91dd
 
IA-32:
nss_ldap-226-17.i386.rpm
File outdated by:  RHBA-2009:0986		     f2728f30aeb7e78623aae9265fae7369
 
x86_64:
nss_ldap-226-17.i386.rpm
File outdated by:  RHBA-2009:0986		     f2728f30aeb7e78623aae9265fae7369
nss_ldap-226-17.x86_64.rpm
File outdated by:  RHBA-2009:0986		     804dba9f8720306da14615b1f353e31d
 
Red Hat Enterprise Linux AS (v. 4)
SRPMS:
nss_ldap-226-17.src.rpm
File outdated by:  RHBA-2009:0986		     8fdad6a352014e9c95f6640896bf91dd
 
IA-32:
nss_ldap-226-17.i386.rpm
File outdated by:  RHBA-2009:0986		     f2728f30aeb7e78623aae9265fae7369
 
IA-64:
nss_ldap-226-17.i386.rpm
File outdated by:  RHBA-2009:0986		     f2728f30aeb7e78623aae9265fae7369
nss_ldap-226-17.ia64.rpm
File outdated by:  RHBA-2009:0986		     a8cc0cd2d3bd8f2fa916b8f50506dbfa
 
PPC:
nss_ldap-226-17.ppc.rpm
File outdated by:  RHBA-2009:0986		     8fe0c5612ddac345de98d98daf3b1f47
nss_ldap-226-17.ppc64.rpm
File outdated by:  RHBA-2009:0986		     fef89f4ddf2879df5d8b3cad563610dc
 
s390:
nss_ldap-226-17.s390.rpm
File outdated by:  RHBA-2009:0986		     07f25516c0a7c24c8119f440f4c1fdf0
 
s390x:
nss_ldap-226-17.s390.rpm
File outdated by:  RHBA-2009:0986		     07f25516c0a7c24c8119f440f4c1fdf0
nss_ldap-226-17.s390x.rpm
File outdated by:  RHBA-2009:0986		     e193a588cce944b5fa2a3feb01737b61
 
x86_64:
nss_ldap-226-17.i386.rpm
File outdated by:  RHBA-2009:0986		     f2728f30aeb7e78623aae9265fae7369
nss_ldap-226-17.x86_64.rpm
File outdated by:  RHBA-2009:0986		     804dba9f8720306da14615b1f353e31d
 
Red Hat Enterprise Linux ES (v. 4)
SRPMS:
nss_ldap-226-17.src.rpm
File outdated by:  RHBA-2009:0986		     8fdad6a352014e9c95f6640896bf91dd
 
IA-32:
nss_ldap-226-17.i386.rpm
File outdated by:  RHBA-2009:0986		     f2728f30aeb7e78623aae9265fae7369
 
IA-64:
nss_ldap-226-17.i386.rpm
File outdated by:  RHBA-2009:0986		     f2728f30aeb7e78623aae9265fae7369
nss_ldap-226-17.ia64.rpm
File outdated by:  RHBA-2009:0986		     a8cc0cd2d3bd8f2fa916b8f50506dbfa
 
x86_64:
nss_ldap-226-17.i386.rpm
File outdated by:  RHBA-2009:0986		     f2728f30aeb7e78623aae9265fae7369
nss_ldap-226-17.x86_64.rpm
File outdated by:  RHBA-2009:0986		     804dba9f8720306da14615b1f353e31d
 
Red Hat Enterprise Linux WS (v. 4)
SRPMS:
nss_ldap-226-17.src.rpm
File outdated by:  RHBA-2009:0986		     8fdad6a352014e9c95f6640896bf91dd
 
IA-32:
nss_ldap-226-17.i386.rpm
File outdated by:  RHBA-2009:0986		     f2728f30aeb7e78623aae9265fae7369
 
IA-64:
nss_ldap-226-17.i386.rpm
File outdated by:  RHBA-2009:0986		     f2728f30aeb7e78623aae9265fae7369
nss_ldap-226-17.ia64.rpm
File outdated by:  RHBA-2009:0986		     a8cc0cd2d3bd8f2fa916b8f50506dbfa
 
x86_64:
nss_ldap-226-17.i386.rpm
File outdated by:  RHBA-2009:0986		     f2728f30aeb7e78623aae9265fae7369
nss_ldap-226-17.x86_64.rpm
File outdated by:  RHBA-2009:0986		     804dba9f8720306da14615b1f353e31d
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

207286 - CVE-2006-5170 When using LDAP for authentication, xscreensaver allows access if account locked out.


References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5170
http://www.redhat.com/security/updates/classification/#moderate

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/