dgit.raspbian.org Git - openldap.git/commit

author	Ryan Tandy <ryan@nardis.ca>
	Fri, 22 Jan 2021 03:54:40 +0000 (03:54 +0000)
committer	Ryan Tandy <ryan@nardis.ca>
	Fri, 22 Jan 2021 03:54:40 +0000 (03:54 +0000)
commit	acdc3fe48786a01e38e844eacb13ea9806d3f2cf
tree	fc4eaceea93fd130a8f63489d561c7214dfc3bbf	tree \| snapshot
parent	a1459c6cf9555642855ce6cf657ad07e24b886c9	commit \| diff
parent	f685f252c8fe1405441d759cbad16d7dc166766e	commit \| diff

openldap (2.4.47+dfsg-3+deb10u5) buster-security; urgency=high

  * Fix slapd crashes in Certificate Exact Assertion processing
    (ITS#9404, ITS#9424) (CVE-2020-36221)
  * Fix slapd assertion failures in saslAuthzTo validation
    (ITS#9406, ITS#9407) (CVE-2020-36222)
  * Fix slapd crash in Values Return Filter control handling
    (ITS#9408) (CVE-2020-36223)
  * Fix slapd crashes in saslAuthzTo processing (ITS#9409, ITS#9412, ITS#9413)
    (CVE-2020-36224, CVE-2020-36225, CVE-2020-36226)
  * Fix slapd assertion failure in X.509 DN parsing
    (ITS#9423) (CVE-2020-36230)
  * Fix slapd crash in X.509 DN parsing (ITS#9425) (CVE-2020-36229)
  * Fix slapd crash in Certificate List Exact Assertion processing
    (ITS#9427) (CVE-2020-36228)
  * Fix slapd infinite loop with Cancel operation (ITS#9428) (CVE-2020-36227)

[dgit import unpatched openldap 2.4.47+dfsg-3+deb10u5]

143 files changed:

debian/DB_CONFIG	\|	\|	blob
debian/README.DB_CONFIG	\|	\|	blob
debian/TODO	\|	\|	blob
debian/USE-CASES	\|	\|	blob
debian/changelog	\|	\|	blob
debian/clean	\|	\|	blob
debian/compat	\|	\|	blob
debian/configure.options	\|	\|	blob
debian/control	\|	\|	blob
debian/copyright	\|	\|	blob
debian/dh_installscripts-common	\|	\|	blob
debian/ldap-utils.README.Debian	\|	\|	blob
debian/ldap-utils.dirs	\|	\|	blob
debian/ldap-utils.install	\|	\|	blob
debian/ldap-utils.manpages	\|	\|	blob
debian/ldiftopasswd	\|	\|	blob
debian/libldap-2.4-2.README.Debian	\|	\|	blob
debian/libldap-2.4-2.install	\|	\|	blob
debian/libldap-2.4-2.links.in	\|	\|	blob
debian/libldap-2.4-2.lintian-overrides	\|	\|	blob
debian/libldap-2.4-2.shlibs	\|	\|	blob
debian/libldap-2.4-2.symbols	\|	\|	blob
debian/libldap-common.install	\|	\|	blob
debian/libldap-common.manpages	\|	\|	blob
debian/libldap2-dev.dirs	\|	\|	blob
debian/libldap2-dev.install	\|	\|	blob
debian/libldap2-dev.links.in	\|	\|	blob
debian/libldap2-dev.manpages	\|	\|	blob
debian/patches/ITS-8964-Do-not-free-original-filter.patch	\|	\|	blob
debian/patches/ITS-9038-Another-test028-typo.patch	\|	\|	blob
debian/patches/ITS-9038-Fix-typo-in-test-script.patch	\|	\|	blob
debian/patches/ITS-9038-Update-test028-to-test-this-is-enforced.patch	\|	\|	blob
debian/patches/ITS-9038-restrict-rootDN-proxyauthz-to-its-own-DBs.patch	\|	\|	blob
debian/patches/ITS-9052-zero-out-sasl_ssf-in-connection_init.patch	\|	\|	blob
debian/patches/ITS-9202-limit-depth-of-nested-filters.patch	\|	\|	blob
debian/patches/ITS-9370-check-for-equality-rule-on-old_rdn.patch	\|	\|	blob
debian/patches/ITS-9383-remove-assert-in-certificateListValidate.patch	\|	\|	blob
debian/patches/ITS-9384-remove-assert-in-obsolete-csnNormalize23.patch	\|	\|	blob
debian/patches/ITS-9404-fix-serialNumberAndIssuerCheck.patch	\|	\|	blob
debian/patches/ITS-9406-9407-remove-saslauthz-asserts.patch	\|	\|	blob
debian/patches/ITS-9406-fix-debug-msg.patch	\|	\|	blob
debian/patches/ITS-9408-fix-vrfilter-double-free.patch	\|	\|	blob
debian/patches/ITS-9409-saslauthz-use-ch_free-on-normalized-DN.patch	\|	\|	blob
debian/patches/ITS-9409-saslauthz-use-slap_sl_free-in-prev-commit.patch	\|	\|	blob
debian/patches/ITS-9411-fix-thisUpdate-check.patch	\|	\|	blob
debian/patches/ITS-9412-fix-AVA_Sort-on-invalid-RDN.patch	\|	\|	blob
debian/patches/ITS-9413-fix-slap_parse_user.patch	\|	\|	blob
debian/patches/ITS-9423-ldap_X509dn2bv-check-for-invalid-BER-after-.patch	\|	\|	blob
debian/patches/ITS-9424-fix-serialNumberAndIssuerSerialCheck.patch	\|	\|	blob
debian/patches/ITS-9425-add-more-checks-to-ldap_X509dn2bv.patch	\|	\|	blob
debian/patches/ITS-9427-fix-issuerAndThisUpdateCheck.patch	\|	\|	blob
debian/patches/ITS-9428-fix-cancel-exop.patch	\|	\|	blob
debian/patches/ITS6035-olcauthzregex-needs-restart.patch	\|	\|	blob
debian/patches/add-tlscacert-option-to-ldap-conf	\|	\|	blob
debian/patches/contrib-makefiles	\|	\|	blob
debian/patches/do-not-second-guess-sonames	\|	\|	blob
debian/patches/evolution-ntlm	\|	\|	blob
debian/patches/fix-build-top-mk	\|	\|	blob
debian/patches/getaddrinfo-is-threadsafe	\|	\|	blob
debian/patches/index-files-created-as-root	\|	\|	blob
debian/patches/lastbind-makefile-manpage	\|	\|	blob
debian/patches/ldap-conf-tls-cacertdir	\|	\|	blob
debian/patches/ldapi-socket-place	\|	\|	blob
debian/patches/libldap-symbol-versions	\|	\|	blob
debian/patches/man-slapd	\|	\|	blob
debian/patches/no-AM_INIT_AUTOMAKE	\|	\|	blob
debian/patches/no-bdb-ABI-second-guessing	\|	\|	blob
debian/patches/no-gnutls_global_set_mutex	\|	\|	blob
debian/patches/sasl-default-path	\|	\|	blob
debian/patches/series	\|	\|	blob
debian/patches/set-maintainer-name	\|	\|	blob
debian/patches/slapi-errorlog-file	\|	\|	blob
debian/patches/smbk5pwd-makefile-manpage	\|	\|	blob
debian/patches/switch-to-lt_dlopenadvise-to-get-RTLD_GLOBAL-set.diff	\|	\|	blob
debian/patches/wrong-database-location	\|	\|	blob
debian/po/POTFILES.in	\|	\|	blob
debian/po/ca.po	\|	\|	blob
debian/po/cs.po	\|	\|	blob
debian/po/da.po	\|	\|	blob
debian/po/de.po	\|	\|	blob
debian/po/es.po	\|	\|	blob
debian/po/eu.po	\|	\|	blob
debian/po/fi.po	\|	\|	blob
debian/po/fr.po	\|	\|	blob
debian/po/gl.po	\|	\|	blob
debian/po/it.po	\|	\|	blob
debian/po/ja.po	\|	\|	blob
debian/po/nl.po	\|	\|	blob
debian/po/pt.po	\|	\|	blob
debian/po/pt_BR.po	\|	\|	blob
debian/po/ru.po	\|	\|	blob
debian/po/sk.po	\|	\|	blob
debian/po/sv.po	\|	\|	blob
debian/po/templates.pot	\|	\|	blob
debian/po/tr.po	\|	\|	blob
debian/po/vi.po	\|	\|	blob
debian/rules	\|	\|	blob
debian/schema/README	\|	\|	blob
debian/schema/collective.schema	\|	\|	blob
debian/schema/compare-schema	\|	\|	blob
debian/schema/corba.schema	\|	\|	blob
debian/schema/core.ldif	\|	\|	blob
debian/schema/core.schema	\|	\|	blob
debian/schema/cosine.schema	\|	\|	blob
debian/schema/duaconf.schema	\|	\|	blob
debian/schema/inetorgperson.schema	\|	\|	blob
debian/schema/java.schema	\|	\|	blob
debian/schema/pmi.schema	\|	\|	blob
debian/schema/ppolicy.schema	\|	\|	blob
debian/slapd-contrib.examples	\|	\|	blob
debian/slapd-contrib.install	\|	\|	blob
debian/slapd-contrib.lintian-overrides	\|	\|	blob
debian/slapd-contrib.manpages	\|	\|	blob
debian/slapd.NEWS	\|	\|	blob
debian/slapd.README.Debian	\|	\|	blob
debian/slapd.backup	\|	\|	blob
debian/slapd.conf	\|	\|	blob
debian/slapd.config	\|	\|	blob
debian/slapd.default	\|	\|	blob
debian/slapd.dirs	\|	\|	blob
debian/slapd.docs	\|	\|	blob
debian/slapd.examples	\|	\|	blob
debian/slapd.init	\|	\|	blob
debian/slapd.init.ldif	\|	\|	blob
debian/slapd.install	\|	\|	blob
debian/slapd.links	\|	\|	blob
debian/slapd.lintian-overrides	\|	\|	blob
debian/slapd.manpages	\|	\|	blob
debian/slapd.postinst	\|	\|	blob
debian/slapd.postrm	\|	\|	blob
debian/slapd.preinst	\|	\|	blob
debian/slapd.prerm	\|	\|	blob
debian/slapd.scripts-common	\|	\|	blob
debian/slapd.templates	\|	\|	blob
debian/slapi-dev.install	\|	\|	blob
debian/slapo-pw-pbkdf2.5	\|	\|	blob
debian/source.lintian-overrides	\|	\|	blob
debian/source/format	\|	\|	blob
debian/tests/check_upgradepath	\|	\|	blob
debian/tests/create_account	\|	\|	blob
debian/tests/find_unused_functions	\|	\|	blob
debian/tests/hammer_slapd	\|	\|	blob
debian/watch	\|	\|	blob

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom