-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 18 Aug 2019 20:16:09 +0000 Source: openldap Binary: slapd slapd-contrib slapd-smbk5pwd ldap-utils libldap-2.4-2 libldap-common libldap2-dev slapi-dev Architecture: source all Version: 2.4.47+dfsg-3+deb10u1~bpo9+1 Distribution: stretch-backports Urgency: medium Maintainer: Debian OpenLDAP Maintainers <pkg-openldap-devel@lists.alioth.debian.org> Changed-By: Ryan Tandy <ryan@nardis.ca> Description: ldap-utils - OpenLDAP utilities libldap-2.4-2 - OpenLDAP libraries libldap-common - OpenLDAP common files for libraries libldap2-dev - OpenLDAP development libraries slapd - OpenLDAP server (slapd) slapd-contrib - contributed plugins for OpenLDAP slapd slapd-smbk5pwd - transitional package for slapd-contrib slapi-dev - development libraries for OpenLDAP SLAPI plugin interface Closes: 932997 932998 934277 Changes: openldap (2.4.47+dfsg-3+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. * Revert "Fix build with Heimdal 7.2.0" as stretch contains a lower version of heimdal. . openldap (2.4.47+dfsg-3+deb10u1) buster; urgency=medium . * Fix slapd to restrict rootDN proxyauthz to its own databases (CVE-2019-13057) (ITS#9038) (Closes: #932997) * Fix slapd to enforce sasl_ssf ACL statement on every connection (CVE-2019-13565) (ITS#9052) (Closes: #932998) * Fix slapo-rwm to not free original filter when rewritten filter is invalid (ITS#8964) (Closes: #934277, LP: #1838370) Checksums-Sha1: e1a34a6446043d67d7feb9c8cfac857637cb6c13 2895 openldap_2.4.47+dfsg-3+deb10u1~bpo9+1.dsc 558dda54462e0cc058d122adf7a2edfb0cd05265 168444 openldap_2.4.47+dfsg-3+deb10u1~bpo9+1.debian.tar.xz 194678ead874312730545b47abbde56d9ed8d395 89722 libldap-common_2.4.47+dfsg-3+deb10u1~bpo9+1_all.deb 48e3ebb4e2a80ee30ad83d8a836f48479f601388 83020 slapd-smbk5pwd_2.4.47+dfsg-3+deb10u1~bpo9+1_all.deb Checksums-Sha256: cc78887ffea3f2cb9a86e4dd8ce991d09701f2573670fdb4bc7aa9693ce59865 2895 openldap_2.4.47+dfsg-3+deb10u1~bpo9+1.dsc 9b27d964eb6958c0f5eaddd4c9ad230780c1667484292a6199acced34295eb5e 168444 openldap_2.4.47+dfsg-3+deb10u1~bpo9+1.debian.tar.xz 1ceb4508e72209b0668811027422652f6cd71319c0a5dd088523068231004899 89722 libldap-common_2.4.47+dfsg-3+deb10u1~bpo9+1_all.deb 424e18fa585bd3947ec6ae4db32f0a3a6fa8e24bcf85e92412fe44233492802d 83020 slapd-smbk5pwd_2.4.47+dfsg-3+deb10u1~bpo9+1_all.deb Files: 6664863cb9ac2480ede41bb2dcd97467 2895 net optional openldap_2.4.47+dfsg-3+deb10u1~bpo9+1.dsc 43a07c46dd19051a87142f76d3c2f51b 168444 net optional openldap_2.4.47+dfsg-3+deb10u1~bpo9+1.debian.tar.xz 2a1c4de36810d9ed92dc0f3253b803a5 89722 libs optional libldap-common_2.4.47+dfsg-3+deb10u1~bpo9+1_all.deb 1b8f3d9bfb60fb852c7b1c23e9047e9c 83020 oldlibs optional slapd-smbk5pwd_2.4.47+dfsg-3+deb10u1~bpo9+1_all.deb -----BEGIN PGP SIGNATURE----- iQJDBAEBCgAtFiEEPSfh0nqdQTd5kOFlIp/PEvXWa7YFAl1aGoQPHHJ5YW5AbmFy ZGlzLmNhAAoJECKfzxL11mu2VqsP/ivo4Xr609Q4sbbdLuEK4icOoBU1JcA6hqIt 7fFG4pO2hkBV+Y/3XUBu89CR0RbElTXBXKAnkeIhaUvOiAV1EuglhZuzi81qXcz6 V1R5s1+2OK/7tPx4lqUL6JRwPuIsRF/xjfOlY//USHmWxzt20Hku+C+fku+gBayG LQXYD5MUqk53q4sOZRFlgrsg1dypctRS5Sv05GweYTd7FDKLpxQg+wdd9jgFRL3h 4cF9VAaJAPZOSHfV8yrDBy3hNdbeFJiGAKFe/LaOX/wRLv79QtRYG5tXF8v5NuG/ YKb8PqDw/jbCFIi4NFdoUw2yRO1UNVG7Wa1OQJnma+Uhpx8qyqdU68N00RjLbg9f 3E/USr5RpWBegDx44oV8Jpkat1alt3F7jbWBmahG46TTJDZRYALq8WQ8HCIfs44W kKC1x9v5EVeO+PzWE9zIUp+sEH7gPH4STQOgqEjI5mCKmYvekYSzKONOMmJncfn5 9TUNUVdf6DgfFR1uxrsQT0MUTYsKEZBk4Z7TTCSuQtBwOCSf1NdY/cST2u9matIU RVHIz/GWPnAj35vilSnRuymfqnpvga0l+R28T3d7/EMh3AATAF66oVI83wvA2J/u QqS0JFjN9Z4Gn9htvZiT6hNstN+808IjjPTWV+5nyaWwhy2ZPEH84uJz9hVWDjOr IvFlIxbo =c1uw -----END PGP SIGNATURE-----