openldap2.2 2.2.26-5ubuntu2.10 source package in Ubuntu
Changelog
openldap2.2 (2.2.26-5ubuntu2.10) dapper-security; urgency=low
* SECURITY UPDATE: null ptr deref, free uninitialized data in modrdn calls
- servers/slapd/modrdn.c: check return for errors and clean up uninitialized data
- servers/slapd/dn.c: return error on 0-length or binary RDNs
- servers/slapd/schema_init.c: return error on invalid syntax
- References
CVE-2010-0211, CVE-2010-0212
http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/modrdn.c.diff?r1=1.170.2.7&r2=1.170.2.8
http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/dn.c.diff?r1=1.182.2.15&r2=1.182.2.16
http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/schema_init.c.diff?r1=1.386.2.39&r2=1.386.2.40
-- Steve Beattie <email address hidden> Thu, 29 Jul 2010 16:25:34 -0700
Upload details
- Uploaded by:
- Steve Beattie
- Uploaded to:
- Dapper
- Original maintainer:
- Torsten Landschoff
- Architectures:
- any
- Section:
- net
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| openldap2.2_2.2.26.orig.tar.gz | 2.5 MiB | 0ae015a4a085b64d208c5f68f349201af2468d84bd199a585d7c0a22722361f9 |
| openldap2.2_2.2.26-5ubuntu2.10.diff.gz | 505.6 KiB | e8b936bea6da0f0fbe100443ee72f716fead7f922bce88928909c6a785d675e4 |
| openldap2.2_2.2.26-5ubuntu2.10.dsc | 1.6 KiB | 13f7db8844e153ae9013efe6ba7e1c9d66da93f0ede2e9415efbd462055e5129 |
Available diffs
Binary packages built by this source
- ldap-utils: No summary available for ldap-utils in ubuntu dapper.
No description available for ldap-utils in ubuntu dapper.
- libldap-2.2-7: No summary available for libldap-2.2-7 in ubuntu dapper.
No description available for libldap-2.2-7 in ubuntu dapper.
- slapd: No summary available for slapd in ubuntu dapper.
No description available for slapd in ubuntu dapper.
