openldap 2.4.47+dfsg-3ubuntu2.1 source package in Ubuntu
Changelog
openldap (2.4.47+dfsg-3ubuntu2.1) disco-security; urgency=medium
* SECURITY UPDATE: rootDN proxyauthz not restricted to its own databases
- debian/patches/CVE-2019-13057-1.patch: add restriction to
servers/slapd/saslauthz.c.
- debian/patches/CVE-2019-13057-2.patch: add tests to
tests/data/idassert.out, tests/data/slapd-idassert.conf,
tests/data/test-idassert1.ldif, tests/scripts/test028-idassert.
- debian/patches/CVE-2019-13057-3.patch: fix typo in
tests/scripts/test028-idassert.
- debian/patches/CVE-2019-13057-4.patch: fix typo in
tests/scripts/test028-idassert.
- CVE-2019-13057
* SECURITY UPDATE: SASL SSF not initialized per connection
- debian/patches/CVE-2019-13565.patch: zero out sasl_ssf in
connection_init in servers/slapd/connection.c.
- CVE-2019-13565
-- Marc Deslauriers <email address hidden> Fri, 26 Jul 2019 13:21:00 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Disco
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| openldap_2.4.47+dfsg.orig.tar.gz | 4.6 MiB | 8f1ac7a4be7dd8ef158361efbfe16509756d3d9b396f5f378c3cf5c727807651 |
| openldap_2.4.47+dfsg-3ubuntu2.1.debian.tar.xz | 176.1 KiB | 9b0d39d18d4ae2ce5768f6aed4c5f109ab7bb3983245ac7c99153199959d0bd0 |
| openldap_2.4.47+dfsg-3ubuntu2.1.dsc | 2.9 KiB | 159958d2d6fba7ce74d6eb30870a0a5b6f146be3eef565540e19837f966a2882 |
Available diffs
Binary packages built by this source
- ldap-utils: No summary available for ldap-utils in ubuntu disco.
No description available for ldap-utils in ubuntu disco.
- ldap-utils-dbgsym: No summary available for ldap-utils-dbgsym in ubuntu disco.
No description available for ldap-utils-dbgsym in ubuntu disco.
- libldap-2.4-2: No summary available for libldap-2.4-2 in ubuntu disco.
No description available for libldap-2.4-2 in ubuntu disco.
- libldap-2.4-2-dbgsym: No summary available for libldap-2.4-2-dbgsym in ubuntu disco.
No description available for libldap-
2.4-2-dbgsym in ubuntu disco.
- libldap-common: No summary available for libldap-common in ubuntu disco.
No description available for libldap-common in ubuntu disco.
- libldap2-dev: No summary available for libldap2-dev in ubuntu disco.
No description available for libldap2-dev in ubuntu disco.
- slapd: No summary available for slapd in ubuntu disco.
No description available for slapd in ubuntu disco.
- slapd-contrib: No summary available for slapd-contrib in ubuntu disco.
No description available for slapd-contrib in ubuntu disco.
- slapd-contrib-dbgsym: No summary available for slapd-contrib-dbgsym in ubuntu disco.
No description available for slapd-contrib-
dbgsym in ubuntu disco.
- slapd-dbgsym: No summary available for slapd-dbgsym in ubuntu disco.
No description available for slapd-dbgsym in ubuntu disco.
- slapd-smbk5pwd: No summary available for slapd-smbk5pwd in ubuntu disco.
No description available for slapd-smbk5pwd in ubuntu disco.
- slapi-dev: No summary available for slapi-dev in ubuntu disco.
No description available for slapi-dev in ubuntu disco.
