Format: 1.7
Date: Thu, 29 Jul 2010 16:25:34 -0700
Source: openldap2.2
Binary: slapd ldap-utils libldap-2.2-7
Architecture: sparc
Version: 2.2.26-5ubuntu2.10
Distribution: dapper
Urgency: low
Maintainer: Ubuntu/sparc Build Daemon <buildd@sejong.buildd>
Changed-By: Steve Beattie <sbeattie@ubuntu.com>
Description: 
 ldap-utils - OpenLDAP utilities
 libldap-2.2-7 - OpenLDAP libraries
 slapd      - OpenLDAP server (slapd)
Changes: 
 openldap2.2 (2.2.26-5ubuntu2.10) dapper-security; urgency=low
 .
   * SECURITY UPDATE: null ptr deref, free uninitialized data in modrdn calls
     - servers/slapd/modrdn.c: check return for errors and clean up uninitialized data
     - servers/slapd/dn.c: return error on 0-length or binary RDNs
     - servers/slapd/schema_init.c: return error on invalid syntax
     - References
       CVE-2010-0211, CVE-2010-0212
       http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/modrdn.c.diff?r1=1.170.2.7&r2=1.170.2.8
       http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/dn.c.diff?r1=1.182.2.15&r2=1.182.2.16
       http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/schema_init.c.diff?r1=1.386.2.39&r2=1.386.2.40
Files: 
 1510f4aa7d28690bdd6e555123f78f36 904184 net optional slapd_2.2.26-5ubuntu2.10_sparc.deb
 302b962696d3eefefb94e1173b1ca661 121062 net optional ldap-utils_2.2.26-5ubuntu2.10_sparc.deb
 dd3eae7b1cc9cba7b26006e18361d16b 148724 libs important libldap-2.2-7_2.2.26-5ubuntu2.10_sparc.deb