[ubuntu/hardy-security] openldap2.3_2.4.9-0ubuntu0.8.04.4_powerpc_translations.tar.gz, openldap2.3_2.4.9-0ubuntu0.8.04.4_amd64_translations.tar.gz, openldap2.3_2.4.9-0ubuntu0.8.04.4_ia64_translations.tar.gz, openldap2.3, openldap2.3_2.4.9-0ubuntu0.8.04.4_i386_translations.tar.gz, openldap2.3_2.4.9-0ubuntu0.8.04.4_hppa_translations.tar.gz, openldap2.3_2.4.9-0ubuntu0.8.04.4_sparc_translations.tar.gz (delayed), openldap2.3_2.4.9-0ubuntu0.8.04.4_lpia_translations.tar.gz 2.4.9-0ubuntu0.8.04.4 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Mon Aug 9 23:05:51 BST 2010
openldap2.3 (2.4.9-0ubuntu0.8.04.4) hardy-security; urgency=low
* SECURITY UPDATE: null ptr deref, free uninitialized data in modrdn calls
- openldap-2.4.22-CVE-2010-0211-modrdn_check_error.patch:
- check return for errors and clean up uninitialized data
- openldap-2.4.22-CVE-2010-0212-modrdn_null_deref.patch:
- return error on 0-length or binary RDNs
- CVE-2010-0211, CVE-2010-0212
Date: Thu, 29 Jul 2010 13:40:10 -0700
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/openldap2.3/2.4.9-0ubuntu0.8.04.4
-------------- next part --------------
Format: 1.7
Date: Thu, 29 Jul 2010 13:40:10 -0700
Source: openldap2.3
Binary: slapd ldap-utils libldap-2.4-2 libldap-2.4-2-dbg libldap2-dev slapd-dbg
Architecture: source
Version: 2.4.9-0ubuntu0.8.04.4
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description:
ldap-utils - OpenLDAP utilities
libldap-2.4-2 - OpenLDAP libraries
libldap-2.4-2-dbg - Debugging information for OpenLDAP libraries
libldap2-dev - OpenLDAP development libraries
slapd - OpenLDAP server (slapd)
slapd-dbg - Debugging information for the OpenLDAP server (slapd)
Changes:
openldap2.3 (2.4.9-0ubuntu0.8.04.4) hardy-security; urgency=low
.
* SECURITY UPDATE: null ptr deref, free uninitialized data in modrdn calls
- openldap-2.4.22-CVE-2010-0211-modrdn_check_error.patch:
- check return for errors and clean up uninitialized data
- openldap-2.4.22-CVE-2010-0212-modrdn_null_deref.patch:
- return error on 0-length or binary RDNs
- CVE-2010-0211, CVE-2010-0212
Files:
05d2052ae3e6ea8e1b847d0e5fe9e18c 2158 net optional openldap2.3_2.4.9-0ubuntu0.8.04.4.dsc
3c4b6c99fb3f094f1f1514daeb3f7120 148114 net optional openldap2.3_2.4.9-0ubuntu0.8.04.4.diff.gz
Original-Maintainer: Debian OpenLDAP Maintainers <pkg-openldap-devel at lists.alioth.debian.org>
More information about the Hardy-changes
mailing list