[SECURITY] Fedora 11 Update: openldap-2.4.15-7.fc11

updates at fedoraproject.org updates at fedoraproject.org
Tue Mar 2 01:03:33 UTC 2010


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-0752
2010-01-19 18:56:21
--------------------------------------------------------------------------------

Name        : openldap
Product     : Fedora 11
Version     : 2.4.15
Release     : 7.fc11
URL         : http://www.openldap.org/
Summary     : LDAP support libraries
Description :
OpenLDAP is an open source suite of LDAP (Lightweight Directory Access
Protocol) applications and development tools. LDAP is a set of
protocols for accessing directory services (usually phone book style
information, but other information is possible) over the Internet,
similar to the way DNS (Domain Name System) information is propagated
over the Internet. The openldap package contains configuration files,
libraries, and documentation for OpenLDAP.

--------------------------------------------------------------------------------
Update Information:

Fixed security issue CVE-2009-3767, F12 and 13 already contain the fix, since it
has been fixed in openldap-2.4.18
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jan 18 2010 Jan Zeleny <jzeleny at redhat.com> - 2.4.15-7
- upstream path fixing CVE-2009-3767 (#537895)
* Wed Oct  7 2009 Jan Zeleny <jzeleny at redhat.com> 2.4.15-6
- fix of smbk5pwd patch - linking with libldap (#526500)
* Tue Aug 25 2009 Jan Zeleny <jzeleny at redhat.com> 2.4.15-5
- fix of spec file - group ldap created with correct gid
* Tue Jun  9 2009 Jan Zeleny <jzeleny at redhat.com> 2.4.15-4
- added $SLAPD_URLS variable to init script (#504504)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #530715 - CVE-2009-3767 OpenLDAP: Doesn't properly handle NULL character in subject Common Name
        https://bugzilla.redhat.com/show_bug.cgi?id=530715
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update openldap' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list