Package "slapd-smbk5pwd"

Name:	slapd-smbk5pwd
Description:	transitional package for slapd-contrib
Latest version:	2.4.49+dfsg-2ubuntu1.10
Release:	focal (20.04)
Level:	updates
Repository:	universe
Head package:	openldap
Homepage:	http://www.openldap.org/

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "slapd-smbk5pwd"

All arch deb package

APT INSTALL

Other versions of "slapd-smbk5pwd" in Focal

Repository	Area	Version
base	universe	2.4.49+dfsg-2ubuntu1
security	universe	2.4.49+dfsg-2ubuntu1.10

Changelog

Version: 2.4.49+dfsg-2ubuntu1.5 2020-11-17 16:07:53 UTC

openldap (2.4.49+dfsg-2ubuntu1.5) focal-security; urgency=medium * SECURITY UPDATE: assertion failure in Certificate List syntax validation - debian/patches/CVE-2020-25709.patch: properly handle error in servers/slapd/schema_init.c. - CVE-2020-25709 * SECURITY UPDATE: assertion failure in CSN normalization with invalid input - debian/patches/CVE-2020-25710.patch: properly handle error in servers/slapd/schema_init.c. - CVE-2020-25710 -- Marc Deslauriers <email address hidden> Mon, 16 Nov 2020 08:39:57 -0500

Source diff to previous version

CVE-2020-25709	assertion failure in Certificate List syntax validation
CVE-2020-25710	assertion failure in CSN normalization with invalid input

Version: 2.4.49+dfsg-2ubuntu1.4 2020-11-09 15:07:14 UTC

openldap (2.4.49+dfsg-2ubuntu1.4) focal-security; urgency=medium * SECURITY UPDATE: DoS via NULL pointer dereference - debian/patches/CVE-2020-25692.patch: skip normalization if there's no equality rule in servers/slapd/modrdn.c. - CVE-2020-25692 -- Marc Deslauriers <email address hidden> Wed, 04 Nov 2020 09:43:57 -0500

Source diff to previous version

CVE-2020-25692

vulnerability with slapd normalization handling with modrdn

Version: 2.4.49+dfsg-2ubuntu1.3 2020-07-16 10:06:42 UTC

openldap (2.4.49+dfsg-2ubuntu1.3) focal; urgency=medium * d/apparmor-profile: Update apparmor profile to grant access to the saslauthd socket, so that SASL authentication works. (LP: #1557157) -- Sergio Durigan Junior <email address hidden> Fri, 12 Jun 2020 18:18:58 -0400

Source diff to previous version

1557157

apparmor profile denied for saslauthd: /run/saslauthd/mux

Version: 2.4.49+dfsg-2ubuntu1.2 2020-05-06 17:08:47 UTC

openldap (2.4.49+dfsg-2ubuntu1.2) focal-security; urgency=medium * SECURITY UPDATE: denial of service via nested search filters - debian/patches/CVE-2020-12243.patch: limit depth of nested filters in servers/slapd/filter.c. - debian/patches/fix_test_timing.patch: fix FTBFS on riscv64 because of test timing issue. - CVE-2020-12243 -- Marc Deslauriers <email address hidden> Fri, 01 May 2020 13:09:12 -0400

CVE-2020-12243

In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of service (daemon crash).

About - Send Feedback to @ubuntu_updates

Package "slapd-smbk5pwd"

Links

Download "slapd-smbk5pwd"

Other versions of "slapd-smbk5pwd" in Focal

Changelog

Share this page

Bookmarks

Latest updates

updates

security

proposed

PPA updates