CVE-2015-3250

Apache Directory LDAP API before 1.0.0-M31 allows attackers to conduct timing attacks via unspecified vectors.

References

http://www.openwall.com/lists/oss-security/2015/07/07/11

https://bugzilla.redhat.com/show_bug.cgi?id=1241163

http://www.openwall.com/lists/oss-security/2015/07/07/5

http://directory.apache.org/api/#news_1