[ubuntu/jammy-security] openldap 2.5.16+dfsg-0ubuntu0.22.04.2 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Tue Jan 30 12:40:16 UTC 2024 

openldap (2.5.16+dfsg-0ubuntu0.22.04.2) jammy-security; urgency=medium

  * No change rebuild to fix CVE-2023-2953 in the -security pocket.

openldap (2.5.16+dfsg-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream version (LP: #2029170).
    - Fixed slapd cn=config incorrect handling of paused (ITS#10045)
    - Fixed slapd-meta to account for MOD ops being optional (ITS#10067)
    - Fixed slapd-asyncmeta to account for MOD ops being optional (ITS#10067)

openldap (2.5.15+dfsg-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream version (LP: #2027079).
    - Several fixes, including to asynchronous connections to the OpenLDAP
      server.

openldap (2.5.14+dfsg-0ubuntu0.22.04.2) jammy; urgency=medium

  * Build the passwd/sha2 contrib module with -fno-strict-aliasing to
    avoid computing an incorrect SHA256 hash with some versions of the
    compiler (LP: #2000817):
    - d/t/{control,sha2-contrib}: test to verify the SHA256 hash
      produced by passwd/sha2
    - d/rules: set -fno-strict-aliasing only when building the
      passwd/sha2 contrib module

openldap (2.5.14+dfsg-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream version (LP: #2007625).
    - Several fixes, including memory leaks that affect slapd and
      certain slapo modules.

openldap (2.5.13+dfsg-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream version (LP: #1983618).
    - Several fixes, including memory leaks that affected libldap.
    - Added slapo-emptyds contrib module (ITS#8882).

openldap (2.5.12+dfsg-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream version (LP: #1977627).
    - Fixed slapd syncrepl handling of new sessions (ITS#9584)
    - Fixed slapd-sql to properly escape filter value (ITS#9815)
      (CVE-2022-29155)
      [ Already included in 2.5.11+dfsg-1~exp1ubuntu3.1 ]
    - More details about this release can be found at:
      https://git.openldap.org/openldap/openldap/-/blob/2bda1fa98fbcedc6cd5995ea905427b8bef89f9d/CHANGES
  * d/p/CVE-2022-29155.patch: Dropped patch; included in this new upstream
    version.

Date: 2024-01-26 12:20:23.602094+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/openldap/2.5.16+dfsg-0ubuntu0.22.04.2
-------------- next part --------------
Sorry, changesfile not available.

More information about the jammy-changes mailing list