CVE-2007-5707
OpenLDAP before 2.3.39 allows remote attackers to cause a denial of service (slapd crash) via an LDAP request with a malformed objectClasses attribute. NOTE: this has been reported as a double free, but the reports are inconsistent.
Date published : 2007-10-30
http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html