[Bug 1557248] Re: OpenLDAP: Backport a fix for use-after-free in GnuTLS-related code
Marc Deslauriers
marc.deslauriers at canonical.com
Tue May 10 15:23:45 UTC 2016
As per the SRU requirements, could you please update the bug description
with a testing procedure? See here for more information:
https://wiki.ubuntu.com/StableReleaseUpdates
Thanks!
--
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1557248
Title:
OpenLDAP: Backport a fix for use-after-free in GnuTLS-related code
Status in openldap package in Ubuntu:
Fix Committed
Status in openldap source package in Wily:
In Progress
Status in openldap source package in Xenial:
In Progress
Status in openldap source package in Yakkety:
Fix Committed
Status in openldap package in Debian:
New
Bug description:
May I ask that you backport an upstream patch that resolves the issue
of use-after-free in libldap that interferes with syncrepl, causing
failures and segfaults.
OpenLDAP commit: 283f3ae1713df449cc170965b311b19157f7b7ea
Link: http://www.openldap.org/devel/gitweb.cgi?p=openldap.git;a=commitdiff;h=283f3ae1713df449cc170965b311b19157f7b7ea
Modifications to file: libraries/libldap/tls_g.c
This problem affects openldap 2.4.41 (in Ubuntu wily), 2.4.42 (in Ubuntu xenial), as well as in 2.4.44 (current upstream stable version). More details are availble on OpenLDAP project bug tracker at:
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=8385
Thank you
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openldap/+bug/1557248/+subscriptions
More information about the Ubuntu-sponsors
mailing list