openldap 2.4.47+dfsg-3ubuntu2.1 source package in Ubuntu

Changelog

openldap (2.4.47+dfsg-3ubuntu2.1) disco-security; urgency=medium

  * SECURITY UPDATE: rootDN proxyauthz not restricted to its own databases
    - debian/patches/CVE-2019-13057-1.patch: add restriction to
      servers/slapd/saslauthz.c.
    - debian/patches/CVE-2019-13057-2.patch: add tests to
      tests/data/idassert.out, tests/data/slapd-idassert.conf,
      tests/data/test-idassert1.ldif, tests/scripts/test028-idassert.
    - debian/patches/CVE-2019-13057-3.patch: fix typo in
      tests/scripts/test028-idassert.
    - debian/patches/CVE-2019-13057-4.patch: fix typo in
      tests/scripts/test028-idassert.
    - CVE-2019-13057
  * SECURITY UPDATE: SASL SSF not initialized per connection
    - debian/patches/CVE-2019-13565.patch: zero out sasl_ssf in
      connection_init in servers/slapd/connection.c.
    - CVE-2019-13565

 -- Marc Deslauriers <email address hidden>  Fri, 26 Jul 2019 13:21:00 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2019-07-29
Uploaded to:
Disco
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
net
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Disco security on 2019-07-30 main net

Downloads

File Size SHA-256 Checksum
openldap_2.4.47+dfsg.orig.tar.gz 4.6 MiB 8f1ac7a4be7dd8ef158361efbfe16509756d3d9b396f5f378c3cf5c727807651
openldap_2.4.47+dfsg-3ubuntu2.1.debian.tar.xz 176.1 KiB 9b0d39d18d4ae2ce5768f6aed4c5f109ab7bb3983245ac7c99153199959d0bd0
openldap_2.4.47+dfsg-3ubuntu2.1.dsc 2.9 KiB 159958d2d6fba7ce74d6eb30870a0a5b6f146be3eef565540e19837f966a2882

View changes file

Binary packages built by this source

ldap-utils: OpenLDAP utilities

 This package provides utilities from the OpenLDAP (Lightweight
 Directory Access Protocol) package. These utilities can access a
 local or remote LDAP server and contain all the client programs
 required to access LDAP servers.

ldap-utils-dbgsym: debug symbols for ldap-utils
libldap-2.4-2: OpenLDAP libraries

 These are the run-time libraries for the OpenLDAP (Lightweight Directory
 Access Protocol) servers and clients.

libldap-2.4-2-dbgsym: debug symbols for libldap-2.4-2
libldap-common: OpenLDAP common files for libraries

 These are common files for the run-time libraries for the OpenLDAP
 (Lightweight Directory Access Protocol) servers and clients.

libldap2-dev: OpenLDAP development libraries

 This package allows development of LDAP applications using the OpenLDAP
 libraries. It includes headers, libraries and links to allow static and
 dynamic linking.

slapd: OpenLDAP server (slapd)

 This is the OpenLDAP (Lightweight Directory Access Protocol) server
 (slapd). The server can be used to provide a standalone directory
 service.

slapd-contrib: contributed plugins for OpenLDAP slapd

 This package contains a number of slapd overlays and plugins contributed by
 the OpenLDAP community. While distributed as part of OpenLDAP Software, they
 are not necessarily supported by the OpenLDAP Project.

slapd-contrib-dbgsym: debug symbols for slapd-contrib
slapd-dbgsym: debug symbols for slapd
slapd-smbk5pwd: transitional package for slapd-contrib

 This is a transitional package from slapd-smbk5pwd to slapd-contrib. It can be
 safely removed.

slapi-dev: development libraries for OpenLDAP SLAPI plugin interface

 This package allows development of plugins for the OpenLDAP slapd server
 using the SLAPI interface. It includes the headers and libraries needed
 to build such plugins.