[ubuntu/vivid-security] openldap 2.4.31-1+nmu2ubuntu12.3 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Wed Sep 16 17:13:51 UTC 2015

openldap (2.4.31-1+nmu2ubuntu12.3) vivid-security; urgency=medium

  * SECURITY UPDATE: denial of service via crafted BER data
    - debian/patches/CVE-2015-6908.patch: remove obsolete assert in
    - CVE-2015-6908
  * SECURITY UPDATE: user impersonation via incorrect default permissions
    - debian/slapd.init.ldif: disallow modifying one's own entry by
    - CVE-2014-9713

openldap (2.4.31-1+nmu2ubuntu12.2) vivid; urgency=medium

  * debian/apparmor-profile: Change 'r' to 'rw' for ldapi and nslcd sockets,
    required for apparmor kernel ABI v7 (utopic and later). (LP: #1392018)

Date: 2015-09-15 18:02:15.303300+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Vivid-changes mailing list