CVE-2013-0288

Name of the Vulnerable Software and Affected Versions nss-pam-ldapd versions 0.7.x through 0.7.17 nss-pam-ldapd versions 0.8.x through 0.8.10

Description The issue is related to the incorrect use of the FD SET macro, which can trigger a stack-based buffer overflow when an application has a large number of open file descriptors. This can cause a denial of service, resulting in an application crash, and potentially allow for the execution of arbitrary code. The vulnerability is also related to the implementation of the select() and FD SET() functions in the nss-pam-ldapd package, which can lead to a file descriptor overflow.

Recommendations For nss-pam-ldapd versions 0.7.x through 0.7.17, update to version 0.7.18 or later. For nss-pam-ldapd versions 0.8.x through 0.8.10, update to version 0.8.11 or later. As a temporary workaround, consider restricting the number of open file descriptors for applications using nss-pam-ldapd to minimize the risk of exploitation.