[Oraclevm-errata] OVMSA-2016-0069 Oracle VM 3.2 openldap security update

Errata Announcements for Oracle VM oraclevm-errata at oss.oracle.com
Tue Jun 21 10:09:28 PDT 2016


Oracle VM Security Advisory OVMSA-2016-0069

The following updated rpms for Oracle VM 3.2 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
openldap-2.3.43-29.el5_11.x86_64.rpm
openldap-clients-2.3.43-29.el5_11.x86_64.rpm


SRPMS:
http://oss.oracle.com/oraclevm/server/3.2/SRPMS-updates/openldap-2.3.43-29.el5_11.src.rpm



Description of changes:

[2.3.43-29]
- CVE-2015-6908 openldap: ber_get_next denial of service vulnerability 
(#1263170)

[2.3.43-28]
- fix: syncprov psearch race condition (#999811)

[2.3.43-27]
- fix: CVE-2013-4449 segfault on certain queries with rwm overlay (#1064146)

[2.3.43-26]
- fix: do not send IPv6 DNS queries when IPv6 is disabled on the host 
(#812772)

[2.3.43-25]
- fix: disable static libraries stripping (#684630)

[2.3.43-24]
- fix: memory leaks in syncrepl and slap_sl_free (#741184)

[2.3.43-23]
- new feature update: honor priority/weight with ldap_domain2hostlist 
(#733435)
- fix: initscript marked as %config incorrectly (#738768)

[2.3.43-22]
- new feature: honor priority/weight with ldap_domain2hostlist (#733435)

[2.3.43-21]
- fix: strict aliasing warnings during package build (#732381)

[2.3.43-20]
- fix: OpenLDAP packages lack debug data (#684630)
- doc: Document preferred use of TLS_CACERT instead of TLS_CACERTDIR to 
specify Certificate Authorities (#699652)
- fix: libldap ignores a directory of CA certificates if any of them 
can't be read (#609722)
- fix: Migration: migrate_all_offline.sh can't handle duplicate entries 
(#563148)
- fix: Init script is working wrong if database recovery is needed (#604092)

[2.3.43-19]
- fix: CVE-2011-1024 ppolicy forwarded bind failure messages cause 
success (#680486)

[2.3.43-18]
- fix: slapd concurrent access to connections causes slapd to silently 
die (#641953)

[2.3.43-17]
- backport: ldap_init_fd() API function

[2.3.43-16]
- fix: ppolicy crash while replace-deleting userPassword attribute (#665951)

[2.3.43-15]
- fix: connection freeze when using TLS (#591419)

[2.3.43-14]
- don't remove task twice during replication

[2.3.43-13]
- fixed segfault issues in modrdn (#606375)
- added patch handling null char in TLS to compat package
   (#606375, patch backported by Jan Vcelak <jvcelak at redhat.com>)




More information about the Oraclevm-errata mailing list