[ubuntu/disco-security] openldap 2.4.47+dfsg-3ubuntu2.1 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Tue Jul 30 16:43:25 UTC 2019
openldap (2.4.47+dfsg-3ubuntu2.1) disco-security; urgency=medium
* SECURITY UPDATE: rootDN proxyauthz not restricted to its own databases
- debian/patches/CVE-2019-13057-1.patch: add restriction to
servers/slapd/saslauthz.c.
- debian/patches/CVE-2019-13057-2.patch: add tests to
tests/data/idassert.out, tests/data/slapd-idassert.conf,
tests/data/test-idassert1.ldif, tests/scripts/test028-idassert.
- debian/patches/CVE-2019-13057-3.patch: fix typo in
tests/scripts/test028-idassert.
- debian/patches/CVE-2019-13057-4.patch: fix typo in
tests/scripts/test028-idassert.
- CVE-2019-13057
* SECURITY UPDATE: SASL SSF not initialized per connection
- debian/patches/CVE-2019-13565.patch: zero out sasl_ssf in
connection_init in servers/slapd/connection.c.
- CVE-2019-13565
Date: 2019-07-29 13:51:13.499817+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/openldap/2.4.47+dfsg-3ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Disco-changes
mailing list