[Oraclevm-errata] OVMSA-2016-0069 Oracle VM 3.2 openldap security update
Errata Announcements for Oracle VM
oraclevm-errata at oss.oracle.com
Tue Jun 21 10:09:28 PDT 2016
Oracle VM Security Advisory OVMSA-2016-0069
The following updated rpms for Oracle VM 3.2 have been uploaded to the
Unbreakable Linux Network:
x86_64:
openldap-2.3.43-29.el5_11.x86_64.rpm
openldap-clients-2.3.43-29.el5_11.x86_64.rpm
SRPMS:
http://oss.oracle.com/oraclevm/server/3.2/SRPMS-updates/openldap-2.3.43-29.el5_11.src.rpm
Description of changes:
[2.3.43-29]
- CVE-2015-6908 openldap: ber_get_next denial of service vulnerability
(#1263170)
[2.3.43-28]
- fix: syncprov psearch race condition (#999811)
[2.3.43-27]
- fix: CVE-2013-4449 segfault on certain queries with rwm overlay (#1064146)
[2.3.43-26]
- fix: do not send IPv6 DNS queries when IPv6 is disabled on the host
(#812772)
[2.3.43-25]
- fix: disable static libraries stripping (#684630)
[2.3.43-24]
- fix: memory leaks in syncrepl and slap_sl_free (#741184)
[2.3.43-23]
- new feature update: honor priority/weight with ldap_domain2hostlist
(#733435)
- fix: initscript marked as %config incorrectly (#738768)
[2.3.43-22]
- new feature: honor priority/weight with ldap_domain2hostlist (#733435)
[2.3.43-21]
- fix: strict aliasing warnings during package build (#732381)
[2.3.43-20]
- fix: OpenLDAP packages lack debug data (#684630)
- doc: Document preferred use of TLS_CACERT instead of TLS_CACERTDIR to
specify Certificate Authorities (#699652)
- fix: libldap ignores a directory of CA certificates if any of them
can't be read (#609722)
- fix: Migration: migrate_all_offline.sh can't handle duplicate entries
(#563148)
- fix: Init script is working wrong if database recovery is needed (#604092)
[2.3.43-19]
- fix: CVE-2011-1024 ppolicy forwarded bind failure messages cause
success (#680486)
[2.3.43-18]
- fix: slapd concurrent access to connections causes slapd to silently
die (#641953)
[2.3.43-17]
- backport: ldap_init_fd() API function
[2.3.43-16]
- fix: ppolicy crash while replace-deleting userPassword attribute (#665951)
[2.3.43-15]
- fix: connection freeze when using TLS (#591419)
[2.3.43-14]
- don't remove task twice during replication
[2.3.43-13]
- fixed segfault issues in modrdn (#606375)
- added patch handling null char in TLS to compat package
(#606375, patch backported by Jan Vcelak <jvcelak at redhat.com>)
More information about the Oraclevm-errata
mailing list