openldap - Debian Package Tracker

general

source: openldap (main)
version: 2.5.12+dfsg-1
maintainer: Debian OpenLDAP Maintainers (archive) (DMD)
uploaders: Steve Langasek [DMD] – Torsten Landschoff [DMD] – Ryan Tandy [DMD] [DM]
arch: all any
std-ver: 4.6.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.4.44+dfsg-5+deb9u4
o-o-sec: 2.4.44+dfsg-5+deb9u8
o-o-bpo: 2.4.47+dfsg-3+deb10u2~bpo9+1
oldstable: 2.4.47+dfsg-3+deb10u6
old-sec: 2.4.47+dfsg-3+deb10u6
old-bpo: 2.4.57+dfsg-3~bpo10+1
stable: 2.4.57+dfsg-3
stable-bpo: 2.4.59+dfsg-1~bpo11+1
testing: 2.5.11+dfsg-1
unstable: 2.5.12+dfsg-1

versioned links

2.4.44+dfsg-5+deb9u4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.4.44+dfsg-5+deb9u8: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.4.47+dfsg-3+deb10u2~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.4.47+dfsg-3+deb10u6: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.4.57+dfsg-3~bpo10+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.4.57+dfsg-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.4.59+dfsg-1~bpo11+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.4.59+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.5.11+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.5.12+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

ldap-utils (7 bugs: 0, 2, 5, 0)
libldap-2.5-0
libldap-common
libldap-dev
libldap2-dev (1 bugs: 0, 0, 1, 0)
slapd (39 bugs: 2, 25, 12, 0)
slapd-contrib
slapd-smbk5pwd
slapi-dev

action needed

A new upstream version is available: 2.6.2 high

A new upstream version 2.6.2 is available, you should consider packaging it.

Created: 2021-03-18 Last update: 2022-05-18 13:07

1 security issue in stretch high

There is 1 open security issue in stretch.

1 important issue:

CVE-2022-29155: In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backend to slapd, via a SQL statement within an LDAP query. This can occur during an LDAP search operation when the search filter is processed, due to a lack of proper escaping.

Created: 2022-05-04 Last update: 2022-05-06 04:04

1 security issue in buster high

There is 1 open security issue in buster.

1 important issue:

CVE-2022-29155: In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backend to slapd, via a SQL statement within an LDAP query. This can occur during an LDAP search operation when the search filter is processed, due to a lack of proper escaping.

Created: 2022-05-04 Last update: 2022-05-06 04:04

1 security issue in bullseye high

There is 1 open security issue in bullseye.

1 important issue:

CVE-2022-29155: In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backend to slapd, via a SQL statement within an LDAP query. This can occur during an LDAP search operation when the search filter is processed, due to a lack of proper escaping.

Created: 2022-05-04 Last update: 2022-05-06 04:04

1 security issue in bookworm high

There is 1 open security issue in bookworm.

1 important issue:

CVE-2022-29155: In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backend to slapd, via a SQL statement within an LDAP query. This can occur during an LDAP search operation when the search filter is processed, due to a lack of proper escaping.

Created: 2022-05-04 Last update: 2022-05-06 04:04

lintian reports 3 errors and 8 warnings high

Lintian reports 3 errors and 8 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2021-04-11 Last update: 2022-01-01 04:34

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 5-day delay is over. Check why.

Created: 2022-05-10 Last update: 2022-05-18 16:11

3 bugs tagged patch in the BTS normal

The BTS contains patches fixing 3 bugs, consider including or untagging them.

Created: 2021-08-14 Last update: 2022-05-18 16:04

RFH: The maintainer is looking for help with this package. normal

The current maintainer is looking for someone who can help with the maintenance of this package. If you are interested in this package, please consider helping out. One way you can help is offer to be a co-maintainer or triage bugs in the BTS. Please see bug number #512360 for more information.

Created: 2017-12-02 Last update: 2017-12-02 00:26

Build log checks report 3 warnings low

Build log checks report 3 warnings

Created: 2021-08-28 Last update: 2021-08-28 07:01

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.1 instead of 4.6.0).

Created: 2022-05-11 Last update: 2022-05-11 23:25

testing migrations

excuses:
- Migration status for openldap (2.5.11+dfsg-1 to 2.5.12+dfsg-1): BLOCKED: Rejected/violates migration policy/introduces a regression
- Issues preventing migration:
- ∙ ∙ Updating openldap would introduce bugs in testing: #1010678
- ∙ ∙ autopkgtest for libreoffice/blocked-on-ci-infra: arm64: Ignored failure, i386: Ignored failure, ppc64el: Ignored failure, s390x: Ignored failure
- ∙ ∙ autopkgtest for openldap/2.5.12+dfsg-1: amd64: No test results, arm64: No test results, armhf: No test results, i386: No test results, ppc64el: No test results, s390x: No test results
- ∙ ∙ autopkgtest for sssd/2.6.3-3: amd64: Regression ♻ (reference ♻), arm64: Regression ♻ (reference ♻), armhf: Regression ♻ (reference ♻), i386: Regression ♻ (reference ♻), ppc64el: Regression ♻ (reference ♻), s390x: Regression ♻ (reference ♻)
- Additional info:
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/o/openldap.html
- ∙ ∙ 13 days old (needed 5 days)
- Not considered

news

[rss feed]

[2022-05-05] Accepted openldap 2.5.12+dfsg-1 (source) into unstable (Ryan Tandy)
[2022-03-18] openldap 2.5.11+dfsg-1 MIGRATED to testing (Debian testing watch)
[2022-03-12] Accepted openldap 2.5.11+dfsg-1 (source) into unstable (Ryan Tandy)
[2022-01-24] Accepted openldap 2.5.11+dfsg-1~exp1 (source) into experimental (Ryan Tandy)
[2021-10-14] Accepted openldap 2.5.8+dfsg-1~exp1 (source) into experimental (Ryan Tandy)
[2021-09-09] Accepted openldap 2.4.59+dfsg-1~bpo11+1 (source amd64 all) into bullseye-backports, bullseye-backports (Debian FTP Masters) (signed by: Utkarsh Gupta)
[2021-09-02] openldap 2.4.59+dfsg-1 MIGRATED to testing (Debian testing watch)
[2021-08-31] Accepted openldap 2.5.7+dfsg-1~exp1 (source) into experimental (Ryan Tandy)
[2021-08-27] Accepted openldap 2.4.59+dfsg-1 (source) into unstable (Ryan Tandy)
[2021-08-17] Accepted openldap 2.5.6+dfsg-1~exp1 (source) into experimental (Ryan Tandy)
[2021-06-11] Accepted openldap 2.5.5+dfsg-1~exp1 (source) into experimental (Ryan Tandy)
[2021-06-11] Accepted openldap 2.5.4+dfsg-1~exp1 (source amd64 all) into experimental, experimental (Debian FTP Masters) (signed by: Sergio Durigan Junior)
[2021-05-26] Accepted openldap 2.4.57+dfsg-3~bpo10+1 (source) into buster-backports->backports-policy, buster-backports (Debian FTP Masters) (signed by: Ryan Tandy)
[2021-05-24] openldap 2.4.57+dfsg-3 MIGRATED to testing (Debian testing watch)
[2021-05-16] Accepted openldap 2.4.57+dfsg-3 (source) into unstable (Ryan Tandy)
[2021-02-24] Accepted openldap 2.4.47+dfsg-3+deb10u6 (source) into proposed-updates->stable-new, proposed-updates (Debian FTP Masters) (signed by: Salvatore Bonaccorso)
[2021-02-21] openldap 2.4.57+dfsg-2 MIGRATED to testing (Debian testing watch)
[2021-02-20] Accepted openldap 2.4.57+dfsg-2~bpo10+1 (source) into buster-backports (Ryan Tandy)
[2021-02-20] Accepted openldap 2.4.44+dfsg-5+deb9u8 (source amd64 all) into oldstable (Utkarsh Gupta)
[2021-02-20] Accepted openldap 2.4.47+dfsg-3+deb10u6 (source) into stable->embargoed, stable (Debian FTP Masters) (signed by: Salvatore Bonaccorso)
[2021-02-14] Accepted openldap 2.4.57+dfsg-2 (source) into unstable (Ryan Tandy)
[2021-02-06] Accepted openldap 2.4.47+dfsg-3+deb10u5 (source) into proposed-updates->stable-new, proposed-updates (Debian FTP Masters) (signed by: Salvatore Bonaccorso)
[2021-02-03] Accepted openldap 2.4.47+dfsg-3+deb10u5 (source) into stable->embargoed, stable (Debian FTP Masters) (signed by: Salvatore Bonaccorso)
[2021-02-03] Accepted openldap 2.4.44+dfsg-5+deb9u7 (source amd64 all) into oldstable (Utkarsh Gupta)
[2021-01-30] Accepted openldap 2.4.57+dfsg-1~bpo10+1 (source) into buster-backports (Ryan Tandy)
[2021-01-29] openldap 2.4.57+dfsg-1 MIGRATED to testing (Debian testing watch)
[2021-01-23] Accepted openldap 2.4.57+dfsg-1 (source) into unstable (Ryan Tandy)
[2020-12-04] Accepted openldap 2.4.44+dfsg-5+deb9u6 (source amd64 all) into oldstable (Utkarsh Gupta)
[2020-11-19] Accepted openldap 2.4.47+dfsg-3+deb10u4 (source) into proposed-updates->stable-new, proposed-updates (Debian FTP Masters) (signed by: Salvatore Bonaccorso)
[2020-11-19] openldap 2.4.56+dfsg-1 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 54 61
RC: 2 3
I&N: 30 33
M&W: 22 25
F&P: 0
patch: 3

links

homepage
lintian (3, 8)
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
l10n (89, -)
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.5.11+dfsg-1~exp1ubuntu3
51 bugs (3 patches)
patches for 2.5.11+dfsg-1~exp1ubuntu3