[ubuntu/xenial-security] openldap 2.4.42+dfsg-2ubuntu3.10 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Mon Nov 9 11:45:26 UTC 2020
openldap (2.4.42+dfsg-2ubuntu3.10) xenial-security; urgency=medium
* SECURITY UPDATE: DoS via NULL pointer dereference
- debian/patches/CVE-2020-25692.patch: skip normalization if there's no
equality rule in servers/slapd/modrdn.c.
- CVE-2020-25692
openldap (2.4.42+dfsg-2ubuntu3.9) xenial; urgency=medium
[ Andreas Hasenack ]
* d/p/ITS-9171-Insert-callback-in-the-right-place.patch: Import upstream
patch to fix slapd crashing in certain configurations when a client
attempts a login to a locked account. (LP: #1866303)
[ Sergio Durigan Junior]
* d/apparmor-profile: Update apparmor profile to grant access to
the saslauthd socket, so that SASL authentication works. (LP: #1557157)
Date: 2020-11-04 19:57:15.146579+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/openldap/2.4.42+dfsg-2ubuntu3.10
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list