Errata overview
Errata ID 324
Date 2015-09-23
Source package openldap
Fixed in version 2.4.40-1.202.201509141730
This update addresses the following issues:
* When using the mdb backend, the ldap search erroneously returned
  the base object in some cases. This has been fixed.
* Denial of service by unauthenticated remote attackers
  via crafted BER data (CVE-2015-6908)
Additional notes
CVE ID CVE-2015-6908
UCS Bug number #36343