Format: 1.8
Date: Tue, 02 Feb 2021 11:06:34 -0500
Source: openldap
Binary: ldap-utils libldap-2.4-2 libldap2-dev slapd slapd-contrib slapi-dev
Architecture: s390x s390x_translations
Version: 2.4.49+dfsg-2ubuntu1.6
Distribution: focal
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-s390x-005.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 ldap-utils - OpenLDAP utilities
 libldap-2.4-2 - OpenLDAP libraries
 libldap2-dev - OpenLDAP development libraries
 slapd      - OpenLDAP server (slapd)
 slapd-contrib - contributed plugins for OpenLDAP slapd
 slapi-dev  - development libraries for OpenLDAP SLAPI plugin interface
Changes:
 openldap (2.4.49+dfsg-2ubuntu1.6) focal-security; urgency=medium
 .
   * SECURITY UPDATE: integer underflow in Certificate Exact Assertion
     processing
     - debian/patches/CVE-2020-36221-1.patch: fix serialNumberAndIssuerCheck
       in servers/slapd/schema_init.c.
     - debian/patches/CVE-2020-36221-2.patch: fix serialNumberAndIssuerCheck
       in servers/slapd/schema_init.c.
     - CVE-2020-36221
   * SECURITY UPDATE: assert failure in saslAuthzTo validation
     - debian/patches/CVE-2020-36222-1.patch: remove saslauthz asserts in
       servers/slapd/saslauthz.c.
     - debian/patches/CVE-2020-36222-2.patch: fix debug msg in
       servers/slapd/saslauthz.c.
     - CVE-2020-36222
   * SECURITY UPDATE: crash in Values Return Filter control handling
     - debian/patches/CVE-2020-36223.patch: fix vrfilter double-free in
       servers/slapd/controls.c.
     - CVE-2020-36223
   * SECURITY UPDATE: DoS in saslAuthzTo processing
     - debian/patches/CVE-2020-36224-1.patch: use ch_free on normalized DN
       in servers/slapd/saslauthz.c.
     - debian/patches/CVE-2020-36224-2.patch: use slap_sl_free in prev
       commit in servers/slapd/saslauthz.c.
     - CVE-2020-36224
   * SECURITY UPDATE: DoS in saslAuthzTo processing
     - debian/patches/CVE-2020-36225.patch: fix AVA_Sort on invalid RDN in
       servers/slapd/dn.c.
     - CVE-2020-36225
   * SECURITY UPDATE: DoS in saslAuthzTo processing
     - debian/patches/CVE-2020-36226.patch: fix slap_parse_user in
       servers/slapd/saslauthz.c.
     - CVE-2020-36226
   * SECURITY UPDATE: infinite loop in cancel_extop Cancel operation
     - debian/patches/CVE-2020-36227.patch: fix cancel exop in
       servers/slapd/cancel.c.
     - CVE-2020-36227
   * SECURITY UPDATE: DoS in Certificate List Exact Assertion processing
     - debian/patches/CVE-2020-36228.patch: fix issuerAndThisUpdateCheck in
       servers/slapd/schema_init.c.
     - CVE-2020-36228
   * SECURITY UPDATE: DoS in X.509 DN parsing in ad_keystring
     - debian/patches/CVE-2020-36229.patch: add more checks to
       ldap_X509dn2bv in libraries/libldap/tls2.c.
     - CVE-2020-36229
   * SECURITY UPDATE: DoS in X.509 DN parsing in ber_next_element
     - debian/patches/CVE-2020-36230.patch: check for invalid BER after RDN
       count in libraries/libldap/tls2.c.
     - CVE-2020-36230
Checksums-Sha1:
 9121d341508368efb72d73db09bdccf4c6d6f9e0 568260 ldap-utils-dbgsym_2.4.49+dfsg-2ubuntu1.6_s390x.ddeb
 1e10a8f467e9fbc9ce7ec4f338b10dff84fbe5e0 119344 ldap-utils_2.4.49+dfsg-2ubuntu1.6_s390x.deb
 f390a6e1a5ef92570ce71d9251826a0610927387 550584 libldap-2.4-2-dbgsym_2.4.49+dfsg-2ubuntu1.6_s390x.ddeb
 65266cf73a567547c27967001772cb3bd6c58957 143776 libldap-2.4-2_2.4.49+dfsg-2ubuntu1.6_s390x.deb
 7bd0039f04e66f3d40a2725377dc5ae08d3a85ba 253492 libldap2-dev_2.4.49+dfsg-2ubuntu1.6_s390x.deb
 60885163ae46792cfcac62450bec3f0d2ba78f5a 10808 openldap_2.4.49+dfsg-2ubuntu1.6_s390x.buildinfo
 752b7b1aab2d9bbf5a72057a917e0d8a23ef7ee2 62932 openldap_2.4.49+dfsg-2ubuntu1.6_s390x_translations.tar.gz
 00a494a35536c3b91ec868123b1c0968497a4205 62176 slapd-contrib-dbgsym_2.4.49+dfsg-2ubuntu1.6_s390x.ddeb
 8e5edbddcdb71f81c8c5b5b636c2587bfe26ce6d 23996 slapd-contrib_2.4.49+dfsg-2ubuntu1.6_s390x.deb
 d6702044e42e00a081ab9b72b0c10fb35a4c77ae 7155584 slapd-dbgsym_2.4.49+dfsg-2ubuntu1.6_s390x.ddeb
 80f89b04c26b0724ee1f4d15e4318866c553870a 1286352 slapd_2.4.49+dfsg-2ubuntu1.6_s390x.deb
 9e3793a2b15d56d8e6460ef54caf208fd7682626 14644 slapi-dev_2.4.49+dfsg-2ubuntu1.6_s390x.deb
Checksums-Sha256:
 0cb7326583ed36ac3b2dbba5b41322571154f34c32a82e4f2b8da7d31332063c 568260 ldap-utils-dbgsym_2.4.49+dfsg-2ubuntu1.6_s390x.ddeb
 8b33afb8cb80554e342dac4dfca6084a98a4d9891b662e744a2922d212dfa006 119344 ldap-utils_2.4.49+dfsg-2ubuntu1.6_s390x.deb
 02cb2962fd250615717d2991e92340c65544cd0358d379e52ffb22a9b3d7e2ca 550584 libldap-2.4-2-dbgsym_2.4.49+dfsg-2ubuntu1.6_s390x.ddeb
 7787df6ebbf692c2756b5769423c09834722e24d9fb4708804b965c6ad379217 143776 libldap-2.4-2_2.4.49+dfsg-2ubuntu1.6_s390x.deb
 320a79e6363035492d937a5e31adc0a5801a903282748bdf7be6e663b486c4e1 253492 libldap2-dev_2.4.49+dfsg-2ubuntu1.6_s390x.deb
 5eb98b1431db229a376fa50343efaff93b7f1b89d0023d8fe7c6ea311db8ebf9 10808 openldap_2.4.49+dfsg-2ubuntu1.6_s390x.buildinfo
 2c9d19175eb4d8f04948ff06df9a8e301b24088c008b084f7e2eca472661d44f 62932 openldap_2.4.49+dfsg-2ubuntu1.6_s390x_translations.tar.gz
 fc4f8cb3b66831fc0d2cb5233ac7b209e85a9948a6598786e039d3a860684959 62176 slapd-contrib-dbgsym_2.4.49+dfsg-2ubuntu1.6_s390x.ddeb
 05248432c39190abadb96e5ac64865327bc1286ee53692d3e37e56386c2fee27 23996 slapd-contrib_2.4.49+dfsg-2ubuntu1.6_s390x.deb
 d2e546a8964c10d3b30ed83d3f3367e547e6984db75876788ca89a9808d6dac8 7155584 slapd-dbgsym_2.4.49+dfsg-2ubuntu1.6_s390x.ddeb
 06d96ac496ade50e16784de7c59e41273ad8581f8727c0e91d9a5b6f0685b82a 1286352 slapd_2.4.49+dfsg-2ubuntu1.6_s390x.deb
 66dcfa9555093e4d82935ea302b969f8104481386fc69bb1aa50555b5c1a81c3 14644 slapi-dev_2.4.49+dfsg-2ubuntu1.6_s390x.deb
Files:
 eeb709e6f93026999624d7c43581cc05 568260 debug optional ldap-utils-dbgsym_2.4.49+dfsg-2ubuntu1.6_s390x.ddeb
 543e8b4fee1dadc6b969d82f697867ec 119344 net optional ldap-utils_2.4.49+dfsg-2ubuntu1.6_s390x.deb
 664c9076657eda9e050e6f566ba6c448 550584 debug optional libldap-2.4-2-dbgsym_2.4.49+dfsg-2ubuntu1.6_s390x.ddeb
 1db50961d593cd17eac8c7d0587baaf5 143776 libs optional libldap-2.4-2_2.4.49+dfsg-2ubuntu1.6_s390x.deb
 2dfadc683996a143674e1cde16b47fbe 253492 libdevel optional libldap2-dev_2.4.49+dfsg-2ubuntu1.6_s390x.deb
 bb9694e9bd912a61f0766f5f2e501215 10808 net optional openldap_2.4.49+dfsg-2ubuntu1.6_s390x.buildinfo
 fb2154251ae278de98633b625ae8a517 62932 raw-translations - openldap_2.4.49+dfsg-2ubuntu1.6_s390x_translations.tar.gz
 dccd6a35adebb2f93412e46edf232b24 62176 debug optional slapd-contrib-dbgsym_2.4.49+dfsg-2ubuntu1.6_s390x.ddeb
 b85a2f2e7e979ed5d867521beeda3d11 23996 net optional slapd-contrib_2.4.49+dfsg-2ubuntu1.6_s390x.deb
 e3a91bee7f69f9ace86db2d4492317ba 7155584 debug optional slapd-dbgsym_2.4.49+dfsg-2ubuntu1.6_s390x.ddeb
 d8b4aba693fe32cae04d767b1356f94f 1286352 net optional slapd_2.4.49+dfsg-2ubuntu1.6_s390x.deb
 16f7040be65e1dae518de868c394cea6 14644 libdevel optional slapi-dev_2.4.49+dfsg-2ubuntu1.6_s390x.deb
Original-Maintainer: Debian OpenLDAP Maintainers <pkg-openldap-devel@lists.alioth.debian.org>