[packages/openldap] - updated to 2.4.41 - removed obsolete CVE-2015-1545-CVE-2015-1546 patch
qboosh
qboosh at pld-linux.org
Sun Jul 5 09:05:29 CEST 2015
commit a6d69793466dd28fae4f1d1fd25af19bb441060b
Author: Jakub Bogusz <qboosh at pld-linux.org>
Date: Sun Jul 5 09:07:23 2015 +0200
- updated to 2.4.41
- removed obsolete CVE-2015-1545-CVE-2015-1546 patch
CVE-2015-1545-CVE-2015-1546.patch | 26 --------------------------
openldap.spec | 8 +++-----
2 files changed, 3 insertions(+), 31 deletions(-)
---
diff --git a/openldap.spec b/openldap.spec
index e0f467a..d672d38 100644
--- a/openldap.spec
+++ b/openldap.spec
@@ -25,12 +25,12 @@ Summary(pt_BR.UTF-8): Clientes e servidor para LDAP
Summary(ru.UTF-8): Образцы клиентов LDAP
Summary(uk.UTF-8): Зразки клієнтів LDAP
Name: openldap
-Version: 2.4.40
-Release: 4
+Version: 2.4.41
+Release: 1
License: OpenLDAP Public License
Group: Networking/Daemons
Source0: ftp://ftp.openldap.org/pub/OpenLDAP/openldap-release/%{name}-%{version}.tgz
-# Source0-md5: 423c1f23d2a0cb96b3e9baf7e9d7dda7
+# Source0-md5: 3f1a4cea52827e18feaedfdc1634b5d0
Source1: http://download.oracle.com/berkeley-db/db-%{db_version}.tar.gz
# Source1-md5: 718082e7e35fc48478a2334b0bc4cd11
Source2: ldap.init
@@ -63,7 +63,6 @@ Patch19: %{name}-gcc47.patch
Patch20: enable-mdb.patch
Patch22: %{name}-am.patch
Patch23: %{name}-db.patch
-Patch24: CVE-2015-1545-CVE-2015-1546.patch
# Patch for the evolution library
Patch100: %{name}-ntlm.diff
URL: http://www.openldap.org/
@@ -1245,7 +1244,6 @@ cd %{name}-%{version}
%patch20 -p1
%patch22 -p1
%patch23 -p1
-%patch24 -p1
%if %{with krb5}
%patch17 -p1
%endif
diff --git a/CVE-2015-1545-CVE-2015-1546.patch b/CVE-2015-1545-CVE-2015-1546.patch
deleted file mode 100644
index a642bed..0000000
--- a/CVE-2015-1545-CVE-2015-1546.patch
+++ /dev/null
@@ -1,26 +0,0 @@
-From c32e74763f77675b9e144126e375977ed6dc562c Mon Sep 17 00:00:00 2001
-From: Howard Chu <hyc at openldap.org>
-Date: Mon, 19 Jan 2015 22:25:53 +0000
-Subject: [PATCH] ITS#8027 require non-empty AttributeList
-
----
- servers/slapd/overlays/deref.c | 3 ++-
- 1 file changed, 2 insertions(+), 1 deletion(-)
-
-diff --git a/servers/slapd/overlays/deref.c b/servers/slapd/overlays/deref.c
-index 9420e3e..05aa890 100644
---- a/servers/slapd/overlays/deref.c
-+++ b/servers/slapd/overlays/deref.c
-@@ -183,7 +183,8 @@ deref_parseCtrl (
- ber_len_t cnt = sizeof(struct berval);
- ber_len_t off = 0;
-
-- if ( ber_scanf( ber, "{m{M}}", &derefAttr, &attributes, &cnt, off ) == LBER_ERROR )
-+ if ( ber_scanf( ber, "{m{M}}", &derefAttr, &attributes, &cnt, off ) == LBER_ERROR
-+ || !cnt )
- {
- rs->sr_text = "Dereference control: derefSpec decoding error";
- rs->sr_err = LDAP_PROTOCOL_ERROR;
---
-1.7.10.4
-
================================================================
---- gitweb:
http://git.pld-linux.org/gitweb.cgi/packages/openldap.git/commitdiff/a6d69793466dd28fae4f1d1fd25af19bb441060b
More information about the pld-cvs-commit
mailing list