IO09113: TDS Server ABEND adding ibm-globalAdminGroup entry

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

  • Using TDS server version 6.1.0.0 - 6.1.0.15, ldapadd the
    following entry using administrator bind:
    
        dn: globalGroupName=GlobalAdminGroup,cn=ibmpolicies
        globalGroupName: GlobalAdminGroup
        objectclass: top
        objectclass: ibm-globalAdminGroup
    
    A double free crashes server w/ SIGSEGV on most platforms.
    

Local fix

  • There is no real risk of a vulnerability because:
    
    a) Only an administrator is allowed to modify this entry.
       A non-admin bind cannot crash the server this way.
    
    b) An administrator would never need to do add this entry
       because it is always created by the server automatically
       at startup. Indeed, the error is partly caused because
       we're adding an entry which already exists.
    
    So the work around is simply "don't do this", no one would ever
    need to anyway.
    

Problem summary

  • 2 different pointer references to the same allocated memory were
    being freed. The fix is to NULL both pointer references whenever
    either one is freed so that we know not to free them both.
    

Problem conclusion

  • The fix for this APAR will be contained in the following
    maintenance packages:
    | fix pack | 6.1.0-TIV-ITDS-FP0002 |
    

Temporary fix

Comments

APAR Information

  • APAR number

    IO09113

  • Reported component name

    IBM TIV DIR SER

  • Reported component ID

    5724J3960

  • Reported release

    610

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2008-06-24

  • Closed date

    2008-06-24

  • Last modified date

    2008-06-24

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    IBM TIV DIR SER

  • Fixed component ID

    5724J3960

Applicable component levels

  • R610 PSY

       UP

  • R600 PSN

       UP



Rate this page:

(0 users)Average rating

Document information


More support for:

IBM Security Directory Server
General

Software version:

610

Reference #:

IO09113

Modified date:

2008-06-24

Translate my page

Machine Translation

Content navigation