Gentoo Linux security advisory - Versions of the pam_ldap module prior to 144 include a remote exploitable format string bug in the logging function. This affects Gentoo users that have installed the net-libs/pam_ldap-134-r1 package.
9d756befd92e1900fed84a3fd3fbaa84c844813dda28da5beeec1449d6d0c8dc