Memory management issue in the sssd_nss_ex interface causing ns-slapd process to crash

Solution Verified - Updated 2020-01-16T17:10:53+00:00 -

Issue

Memory management issue in the sssd_nss_ex interface causing ns-slapd process on IPA server to crash.
IPA 389-ds-base crash in krb5-libs - k5_copy_etypes list out of bound.

ns-slapd segfaults after upgrading to RHEL 7.5:

Apr 11 18:34:57 XXXX kernel: ns-slapd[41442]: segfault at 970ea724 ip 00007f56610ef3e5 sp 00007f5632f8a8a0 error 4 in libtcmalloc.so.4.4.5[7f56610b90 00+46000]

After applying errata RHEA-2018:0974 - openldap bug fix and enhancement update, nslcd fails to connect but ldapsearch works. Logs:

Apr 17 14:38:56 XXXX nslcd[33172]: [8b4567] <group/member="nslcd"> ldap_start_tls_s() failed (uri=ldap://XXXXX): Connect error

Environment

Red Hat Enterprise Linux (RHEL)
- 7.5
389-ds-base 1.3.7.5-19
krb5-libs 1.15.1-19
openldap 2.4.44-5
openldap-clients 2.4.44-5

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content

Quick Links

Help

Site Info

Related Sites

Copyright © 2024 Red Hat, Inc.

Here are the common uses of Markdown.

Code blocks

~~~
Code surrounded in tildes is easier to read
~~~

Links/URLs

[Red Hat Customer Portal](https://access.redhat.com)