[Pkg-openldap-devel] CVE-2011-1081
Matthijs Möhlmann
matthijs at cacholong.nl
Mon Mar 28 09:46:06 UTC 2011
On Mar 27, 2011, at 5:31 AM, Quanah Gibson-Mount wrote:
> I will take a look on Monday. For the back-ndb one I would note that it is an experimental backend that was never completed so enabling it in the Debian builds should probably be avoided.
>
> Also, 2.4.25 is out now.
>
> --Quanah
>
> On Mar 26, 2011, at 12:26 PM, Matthijs Möhlmann <matthijs at cacholong.nl> wrote:
>
>> On Mar 25, 2011, at 7:16 PM, Matthijs Möhlmann wrote:
>>
>>> On Mar 25, 2011, at 6:32 PM, Quanah Gibson-Mount wrote:
>>>
>>>> Since work is going to be done on the Debian OL build, I would suggest picking this fix up as well.
>>>>
>>>> Details at:
>>>>
>>>> <https://bugs.launchpad.net/ubuntu/+source/openldap/+bug/742104>
>>>>
>>>> --Quanah
>>>
>>> Thanks, I'll coordinate with security about this bug and have it fixed.
>>>
>>> Regards,
>>>
>>> Matthijs Möhlmann
>>
>> Are there also patches for CVE-2011-1024 and CVE-2011-1025 ?
>>
>> See bug: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=617606
>>
>> Regards,
>>
>> Matthijs Möhlmann
I already found the patches.
Regards,
Matthijs Möhlmann
More information about the Pkg-openldap-devel
mailing list