Ubuntu
openldap package

OpenLDAP Security Fixes?

Bug #610561 reported by Lari Huttunen
268
This bug affects 2 people
Affects Status Importance Assigned to Milestone
openldap (Ubuntu)
Fix Released
High
Steve Beattie

Bug Description

When will these critical fixes be applied to Ubuntu OpenLDAP packages?

http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6570

The CVEs are not updated (CVE-2010-0211 CVE-2010-0212) but the vulnerabiliity details are out and these vulnerabilities are critical.

More information:

http://www.cert.fi/en/reports/2010/vulnerability383115.html

CVE References

Revision history for this message
Marc Deslauriers (mdeslaur) wrote :

Updates are being worked on and will be released shortly.

visibility: private → public
affects: ubuntu → openldap (Ubuntu)
Changed in openldap (Ubuntu):
status: New → Confirmed
importance: Undecided → High
Revision history for this message
Steve Beattie (sbeattie) wrote :

Packages have been pushed to the security ppa and are undergoing verification.

Changed in openldap (Ubuntu):
status: Confirmed → Fix Committed
assignee: nobody → Steve Beattie (sbeattie)
Revision history for this message
Steve Beattie (sbeattie) wrote :

This has been released as USN-965-1 and will show up at http://www.ubuntu.com/usn/usn-965-1. Thanks!

Changed in openldap (Ubuntu):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.

Duplicates of this bug

Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.