Skip to content

CentOS 7 - Updates for x86_64: system environment/daemons: openldap-servers

openldap-servers - LDAP server

Website: http://www.openldap.org/
License: OpenLDAP
Vendor: CentOS
Description:
OpenLDAP is an open-source suite of LDAP (Lightweight Directory Access
Protocol) applications and development tools. LDAP is a set of
protocols for accessing directory services (usually phone book style
information, but other information is possible) over the Internet,
similar to the way DNS (Domain Name System) information is propagated
over the Internet. This package contains the slapd server and related files.

Packages

openldap-servers-2.4.44-25.el7_9.x86_64 [2.2 MiB] Changelog by Simon Pichugin (2022-01-19):
- Fix CVE-2020-25709 openldap: assertion failure in Certificate List syntax validation (#2040539)
- Fix CVE-2020-25710 openldap: assertion failure in CSN normalization with invalid input (#2040538)
openldap-servers-2.4.44-24.el7_9.x86_64 [2.2 MiB] Changelog by Simon Pichugin (2021-08-04):
- CLDAP ldap_result hangs if nobody listens on the port (#1989919)
openldap-servers-2.4.44-23.el7_9.x86_64 [2.2 MiB] Changelog by Simon Pichugin (2021-01-04):
- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)
openldap-servers-2.4.44-22.el7.x86_64 [2.2 MiB] Changelog by Matus Honek (2020-06-06):
- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)
openldap-servers-2.4.44-21.el7_6.x86_64 [2.2 MiB] Changelog by Matus Honek (2018-12-18):
- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)
openldap-servers-2.4.44-20.el7.x86_64 [2.2 MiB] Changelog by Matus Honek (2018-08-21):
- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)
openldap-servers-2.4.44-15.el7_5.x86_64 [2.2 MiB] Changelog by Matus Honek (2018-04-03):
- Bump release to version 2.4.44-15
openldap-servers-2.4.44-13.el7.x86_64 [2.2 MiB] Changelog by Matus Honek (2018-01-31):
- MozNSS Compat. Layer: fix recursive directory deletion (#1516409)
- MozNSS Compat. Layer: fix PIN disclaimer not always shown (#1516409)
- MozNSS Compat. Layer: fix incorrect parsing of CACertDir (#1533955)
openldap-servers-2.4.44-5.el7.x86_64 [2.2 MiB] Changelog by Matus Honek (2017-06-06):
- fix CVE-2017-9287 openldap: Double free vulnerability in servers/slapd/back-mdb/search.c (#1458210)
openldap-servers-2.4.40-13.el7.x86_64 [2.1 MiB] Changelog by Matus Honek (2016-08-17):
- fix: Bad log levels in check_password module
- fix: We can't search expected entries from LDAP server
- fix: OpenLDAP ciphersuite parsing doesn't match OpenSSL ciphers man page
  + Add TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 to list of ciphers
  + Add DH cipher string parsing option
  + Correct handling kECDH ciphers with aRSA or aECDSA
openldap-servers-2.4.40-9.el7_2.x86_64 [2.1 MiB] Changelog by Matúš Honěk (2016-02-22):
- fix: nslcd segfaults due to incorrect mutex initialization (#1294385)
openldap-servers-2.4.40-8.el7.x86_64 [2.1 MiB] Changelog by Matúš Honěk (2015-09-23):
- NSS does not support string ordering (#1231522)
- implement and correct order of parsing attributes (#1231522)
- add multi_mask and multi_strength to correctly handle sets of attributes (#1231522)
- add new cipher suites and correct AES-GCM attributes (#1245279)
- correct DEFAULT ciphers handling to exclude eNULL cipher suites (#1245279)
openldap-servers-2.4.39-7.el7.centos.x86_64 [2.1 MiB] Changelog by Matúš Honěk (2015-09-16):
- CVE-2015-6908 openldap: ber_get_next denial of service vulnerability (#1263173)

Listing created by repoview