[Pkg-openldap-devel] Bug#508561: Bug#508561: SIGSEGV in slapd if smbk5pwd build and installed with heimdal >= 1.0

Andrey Volkov avolkov at varma-el.com
Fri Dec 12 17:47:02 UTC 2008

Hello Steve!

Steve Langasek wrote:
> severity 508561 minor
> thanks
> On Fri, Dec 12, 2008 at 04:36:33PM +0300, Andrey Volkov wrote:
>> As I describe in subj. any version of slapd will died (SIGSEGV)
>> when user account password will changed if module smbk5pwd,
>> built with heimdal >= 1.0, will loaded.
>> This bug was arise when heimdal 1.0 was released, and fix was
>> sent by Guillaume Rousse at Wed, 28 May 2008
>> (see discussion at
>> http://www.stacken.kth.se/lists/heimdal-discuss/2008-05/msg00069.html),
>> and Howard Chu confirm it.
>> I don't know why this bugfix is not in main openldap src tree yet.
> That sounds like an upstream bug.

> The Debian packages don't build the smb5kpwd module.
But many people _use_ it. And, as I wrote before, I'm not sure that
installing module from _official_ source tree should kill slapd.

I, as ex., forget about this bug when upgrading slapd, and, as result,
_everyone_ lost access to server after someone change himself password.

Andrey Volkov

More information about the Pkg-openldap-devel mailing list