UbuntuUpdates.org

Package "python-pyldap"

Name: python-pyldap

Description:

LDAP interface module for Python 2.7 - transition package

Latest version: 3.0.0-1ubuntu0.2
Release: bionic (18.04)
Level: updates
Repository: universe
Head package: python-ldap
Homepage: https://www.python-ldap.org

Links


Download "python-pyldap"


Other versions of "python-pyldap" in Bionic

Repository Area Version
base universe 3.0.0-1
security universe 3.0.0-1ubuntu0.2

Changelog

Version: 3.0.0-1ubuntu0.2 2022-07-11 18:07:12 UTC

  python-ldap (3.0.0-1ubuntu0.2) bionic-security; urgency=medium

  * SECURITY UPDATE: Regular Expression DoS
    - debian/patches/CVE-2021-46823-pre.patch: get rid of
      expected failures in tokenizer tests in Lib/ldap/schema/tokenizer.py,
      Tests/t_ldap_schema_tokenizer.py.
    - debian/patches/CVE-2021-46823.patch: fix ReDoS in
      regex in Lib/ldap/schema/tokenizer.py.
    - CVE-2021-46823

 -- Leonidas Da Silva Barbosa <email address hidden> Mon, 04 Jul 2022 13:38:48 -0300

Source diff to previous version
CVE-2021-46823 python-ldap before 3.4.0 is vulnerable to a denial of service when ldap.schema is used for untrusted schema definitions, because of a regular express

Version: 3.0.0-1ubuntu0.1 2020-01-08 22:08:17 UTC

  python-ldap (3.0.0-1ubuntu0.1) bionic; urgency=medium

  * Stop linking docs to python-ldap package, like it is done in later
    releases. This drops python2 dependenices from the python3
    package. LP: #1850283

 -- Dimitri John Ledkov <email address hidden> Wed, 11 Dec 2019 00:14:27 +0000

1850283 python-ldap package prevents python3-only build



About   -   Send Feedback to @ubuntu_updates