[El-errata] ELSA-2012-0899 Low: Oracle Linux 6 openldap security and bug fix update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Mon Jul 2 19:55:06 PDT 2012


Oracle Linux Security Advisory ELSA-2012-0899

https://rhn.redhat.com/errata/RHSA-2012-0899.html

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:

i386:
openldap-2.4.23-26.el6.i686.rpm
openldap-clients-2.4.23-26.el6.i686.rpm
openldap-devel-2.4.23-26.el6.i686.rpm
openldap-servers-2.4.23-26.el6.i686.rpm
openldap-servers-sql-2.4.23-26.el6.i686.rpm

x86_64:
openldap-2.4.23-26.el6.i686.rpm
openldap-2.4.23-26.el6.x86_64.rpm
openldap-clients-2.4.23-26.el6.x86_64.rpm
openldap-devel-2.4.23-26.el6.i686.rpm
openldap-devel-2.4.23-26.el6.x86_64.rpm
openldap-servers-2.4.23-26.el6.x86_64.rpm
openldap-servers-sql-2.4.23-26.el6.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/openldap-2.4.23-26.el6.src.rpm


Description of changes:

[2.4.23-26]
- fix: MozNSS CA cert dir does not work together with PEM CA cert file 
(#818844)
- fix: memory leak: def_urlpre is not freed (#816168)
- fix update: Default SSL certificate bundle is not found by openldap 
library (#742023)

[2.4.23-25]
- fix update: Default SSL certificate bundle is not found by openldap 
library (#742023)

[2.4.23-24]
- fix update: Default SSL certificate bundle is not found by openldap 
library (#742023)
- fix: memberof overlay on the frontend database causes server segfault 
(#730745)

[2.4.23-23]
- security fix: CVE-2012-1164: assertion failure by processing search 
queries
   requesting only attributes for particular entry (#813162)

[2.4.23-22]
- fix: libraries leak memory when following referrals (#807363)

[2.4.23-21]
- fix: ldapsearch crashes with invalid parameters (#743781)
- fix: replication (syncrepl) with TLS causes segfault (#783445)
- fix: openldap server in MirrorMode sometimes fails to resync via 
syncrepl (#784211)
- use portreserve to reserve LDAPS port (636/tcp+udp) (#790687)
- fix: missing options in manual pages of client tools (#745470)
- fix: SASL_NOCANON option missing in ldap.conf manual page (#732916)
- fix: slapd segfaults when certificate key cannot be loaded (#796808)
- Jan Syná?ek <jsynacek at redhat.com>
   + fix: overlay constraint with count option work bad with modify 
operation (#742163)
   + fix: Default SSL certificate bundle is not found by openldap 
library (#742023)
   + fix: Duplicate close() calls in OpenLDAP (#784203)





More information about the El-errata mailing list