Resolved Bugs
1195729 – CVE-2015-0283 slapi-nis: infinite loop in getgrnam_r() and getgrgid_r()
1206049 – CVE-2015-0283 slapi-nis: infinite loop in getgrnam_r() and getgrgid_r() [fedora-all]
1205200 – CVE-2015-1827 ipa: memory corruption when using get_user_grouplist()
1206047 – CVE-2015-1827 freeipa: ipa: memory corruption when using get_user_grouplist() [fedora-all]<br
CVE-2015-1827: It was discovered that the IPA extdom Directory Server plug-in did not correctly perform memory reallocation when handling user account information. A request for a list of groups for a user that belongs to a large number of groups would cause a Directory Server to crash.
CVE-2015-0283: It was discovered that the slapi-nis Directory Server plug-in did not correctly perform memory reallocation when handling user account information. A request for information about a group with many members, or a request for a user that belongs to a large number of groups, would cause a Directory Server to enter an infinite loop and consume an excessive amount of CPU time.
These issues were discovered by Sumit Bose of Red Hat.