389-ds-base-devel-1.2.11.15-95.el6_9.x86_64
[147 KiB] |
Changelog
by Mark Reynolds (2018-04-12):
- Bump version to 1.2.11-15-95
- Resolves: Bug 1562152 - EMBARGOED CVE-2018-1089 389-ds-base: ns-slapd crash via large filter value in ldapsearch
|
389-ds-base-devel-1.2.11.15-95.el6_9.i686
[147 KiB] |
Changelog
by Mark Reynolds (2018-04-12):
- Bump version to 1.2.11-15-95
- Resolves: Bug 1562152 - EMBARGOED CVE-2018-1089 389-ds-base: ns-slapd crash via large filter value in ldapsearch
|
389-ds-base-devel-1.2.11.15-94.el6_9.x86_64
[147 KiB] |
Changelog
by Mark Reynolds (2018-02-26):
- Release 1.2.11.15-94
- Resolves: Bug 1544415 - CVE-2017-15135 389-ds-base: Authentication bypass due to lack of size check in slapi_ct_memcmp function in ch_malloc.c (fix cherry-pick error)
|
389-ds-base-devel-1.2.11.15-94.el6_9.i686
[147 KiB] |
Changelog
by Mark Reynolds (2018-02-26):
- Release 1.2.11.15-94
- Resolves: Bug 1544415 - CVE-2017-15135 389-ds-base: Authentication bypass due to lack of size check in slapi_ct_memcmp function in ch_malloc.c (fix cherry-pick error)
|
389-ds-base-devel-1.2.11.15-91.el6_9.x86_64
[146 KiB] |
Changelog
by Mark Reynolds (2017-04-03):
- Release 1.2.11.15-91
- Resolves: bug 1437777 - EMBARGOED CVE-2017-2668 389-ds-base: Remote crash via crafted LDAP messages
|
389-ds-base-devel-1.2.11.15-91.el6_9.i686
[146 KiB] |
Changelog
by Mark Reynolds (2017-04-03):
- Release 1.2.11.15-91
- Resolves: bug 1437777 - EMBARGOED CVE-2017-2668 389-ds-base: Remote crash via crafted LDAP messages
|
389-ds-base-devel-1.2.11.15-84.el6_8.i686
[143 KiB] |
Changelog
by Noriko Hosoi (2016-11-07):
- Release 1.2.11.15-84
- Resolves: #1376676 - Backport AES storage scheme plugin (DS 47462)
|
389-ds-base-devel-1.2.11.15-84.el6_8.x86_64
[143 KiB] |
Changelog
by Noriko Hosoi (2016-11-07):
- Release 1.2.11.15-84
- Resolves: #1376676 - Backport AES storage scheme plugin (DS 47462)
|
389-ds-base-devel-1.2.11.15-60.el6.i686
[135 KiB] |
Changelog
by Noriko Hosoi (2015-06-09):
- Release 1.2.11.15-60
- Resolves: #1228402 - Individual abandoned simple paged results request has no chance to be cleaned up (DS 48192)
|
389-ds-base-devel-1.2.11.15-60.el6.x86_64
[135 KiB] |
Changelog
by Noriko Hosoi (2015-06-09):
- Release 1.2.11.15-60
- Resolves: #1228402 - Individual abandoned simple paged results request has no chance to be cleaned up (DS 48192)
|
389-ds-base-devel-1.2.11.15-50.el6_6.x86_64
[129 KiB] |
Changelog
by Noriko Hosoi (2015-01-20):
- Release 1.2.11.15-50
- Resolves: #1179099 - Problem with single value attribute MMR replication (DS 47915, DS 569)
|
389-ds-base-devel-1.2.11.15-50.el6_6.i686
[129 KiB] |
Changelog
by Noriko Hosoi (2015-01-20):
- Release 1.2.11.15-50
- Resolves: #1179099 - Problem with single value attribute MMR replication (DS 47915, DS 569)
|
389-ds-base-devel-1.2.11.15-34.el6_5.i686
[117 KiB] |
Changelog
by Noriko Hosoi (2014-07-28):
- Release 1.2.11.15-34
- Resolves: #1123861
EMBARGOED CVE-2014-3562 unauthenticated information disclosure [rhel-6.5.z] (DS 616, BZ 1123477)
|
389-ds-base-devel-1.2.11.15-34.el6_5.x86_64
[117 KiB] |
Changelog
by Noriko Hosoi (2014-07-28):
- Release 1.2.11.15-34
- Resolves: #1123861
EMBARGOED CVE-2014-3562 unauthenticated information disclosure [rhel-6.5.z] (DS 616, BZ 1123477)
|
389-ds-base-devel-1.2.11.15-32.el6_5.x86_64
[117 KiB] |
Changelog
by Noriko Hosoi (2014-03-11):
- Resolves: bug 1074847 - EMBARGOED CVE-2014-0132 389-ds-base: 389-ds: flaw in parsing authzid can lead to privilege escalation [rhel-6.5.z] (Ticket 47739 - directory server is insecurely misinterpreting authzid on a SASL/GSSAPI bind)
|
389-ds-base-devel-1.2.11.15-32.el6_5.i686
[117 KiB] |
Changelog
by Noriko Hosoi (2014-03-11):
- Resolves: bug 1074847 - EMBARGOED CVE-2014-0132 389-ds-base: 389-ds: flaw in parsing authzid can lead to privilege escalation [rhel-6.5.z] (Ticket 47739 - directory server is insecurely misinterpreting authzid on a SASL/GSSAPI bind)
|
389-ds-base-devel-1.2.11.15-30.el6_5.x86_64
[116 KiB] |
Changelog
by Rich Megginson (2013-11-04):
- Resolves: bug 1024977 CVE-2013-4485 389-ds-base: DoS due to improper handling of ger attr searches
|
389-ds-base-devel-1.2.11.15-30.el6_5.i686
[116 KiB] |
Changelog
by Rich Megginson (2013-11-04):
- Resolves: bug 1024977 CVE-2013-4485 389-ds-base: DoS due to improper handling of ger attr searches
|
389-ds-base-devel-1.2.11.15-22.el6_4.i686
[111 KiB] |
Changelog
by Noriko Hosoi (2013-08-26):
- Resolves: Bug 1000631 - CVE-2013-4283 389-ds-base: ns-slapd crash due to bogus DN -- retry
|
389-ds-base-devel-1.2.11.15-22.el6_4.x86_64
[111 KiB] |
Changelog
by Noriko Hosoi (2013-08-26):
- Resolves: Bug 1000631 - CVE-2013-4283 389-ds-base: ns-slapd crash due to bogus DN -- retry
|
389-ds-base-devel-1.2.11.15-20.el6_4.x86_64
[111 KiB] |
Changelog
by Mark Reynolds (2013-07-26):
- Resolves: Bug 984970 - Overflow in nsslapd-disk-monitoring-threshold(part 5 limits not displayed correctly). (ticket 47427)
|
389-ds-base-devel-1.2.11.15-20.el6_4.i686
[111 KiB] |
Changelog
by Mark Reynolds (2013-07-26):
- Resolves: Bug 984970 - Overflow in nsslapd-disk-monitoring-threshold(part 5 limits not displayed correctly). (ticket 47427)
|
389-ds-base-devel-1.2.11.15-14.el6_4.x86_64
[110 KiB] |
Changelog
by Noriko Hosoi (2013-04-10):
- Resolves: Bug 929107 - ns-slapd crashes sporadically with segmentation fault in libslapd.so (ticket 627)
- Resolves: Bug 929114 - cleanAllRUV task fails to cleanup config upon completion (ticket 623)
|
389-ds-base-devel-1.2.11.15-14.el6_4.i686
[110 KiB] |
Changelog
by Noriko Hosoi (2013-04-10):
- Resolves: Bug 929107 - ns-slapd crashes sporadically with segmentation fault in libslapd.so (ticket 627)
- Resolves: Bug 929114 - cleanAllRUV task fails to cleanup config upon completion (ticket 623)
|
389-ds-base-devel-1.2.11.15-12.el6_4.x86_64
[109 KiB] |
Changelog
by Noriko Hosoi (2013-02-22):
- Resolves: Bug 910994 - PamConfig schema not updated during upgrade
- Resolves: Bug 910995 - Valgrind reports memleak in modify_update_last_modified_attr
- Resolves: Bug 910996 - DS returns error 20 when replacing values of a multi-valued attribute (only when replication is enabled)
- Resolves: Bug 911467 - DNA: use event queue for config update only at the start up
- Resolves: Bug 911468 - Error messages encountered when using POSIX winsync
- Resolves: Bug 911469 - dse.ldif is 0 length after server kill or machine kill
- Resolves: Bug 911474 - Invalid chaining config triggers a disk full error and shutdown
- Resolves: Bug 914305 - ns-slapd segfaults while trying to delete a tombstone entry
- Resolves: Bug 913228 - unauthenticated denial of service vulnerability in handling of LDAPv3 control data
|
389-ds-base-devel-1.2.11.15-12.el6_4.i686
[109 KiB] |
Changelog
by Noriko Hosoi (2013-02-22):
- Resolves: Bug 910994 - PamConfig schema not updated during upgrade
- Resolves: Bug 910995 - Valgrind reports memleak in modify_update_last_modified_attr
- Resolves: Bug 910996 - DS returns error 20 when replacing values of a multi-valued attribute (only when replication is enabled)
- Resolves: Bug 911467 - DNA: use event queue for config update only at the start up
- Resolves: Bug 911468 - Error messages encountered when using POSIX winsync
- Resolves: Bug 911469 - dse.ldif is 0 length after server kill or machine kill
- Resolves: Bug 911474 - Invalid chaining config triggers a disk full error and shutdown
- Resolves: Bug 914305 - ns-slapd segfaults while trying to delete a tombstone entry
- Resolves: Bug 913228 - unauthenticated denial of service vulnerability in handling of LDAPv3 control data
|
389-ds-base-devel-1.2.11.15-11.el6.i686
[108 KiB] |
Changelog
by Noriko Hosoi (2013-01-21):
- Resolves: Bug 896256 - updating package touches configuration files
|
389-ds-base-devel-1.2.11.15-11.el6.x86_64
[108 KiB] |
Changelog
by Noriko Hosoi (2013-01-21):
- Resolves: Bug 896256 - updating package touches configuration files
|
389-ds-base-devel-1.2.10.2-18.el6_3.i686
[99 KiB] |
Changelog
by Noriko Hosoi (2012-06-12):
- Resolves: Bug 830001 - unhashed#user#password visible after changing password
-- patch 0020 disallows users' direct modify on unhashed#user#password
|
389-ds-base-devel-1.2.10.2-18.el6_3.x86_64
[99 KiB] |
Changelog
by Noriko Hosoi (2012-06-12):
- Resolves: Bug 830001 - unhashed#user#password visible after changing password
-- patch 0020 disallows users' direct modify on unhashed#user#password
|