LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Interview: Kristen Carlson Accardi

LWN.net Weekly Edition for July 24, 2008

Tracing: no shortage of options

Interview: Wind River's John Bruggeman

LWN.net Weekly Edition for July 17, 2008

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

Trustix alert 2003-0002 (openldap)



From:
    	      tsl@trustix.com (Trustix Secure Linux Advisor)


To:
    	      tsl-announce@trustix.org


Subject:
    	      TSL-2003-0002 - openldap


Date:
    	      Fri, 21 Feb 2003 16:28:02 +0100



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Trustix Secure Linux Security Advisory #2003-0002

Package name:      openldap
Summary:           New upstream version
Date:              2003-02-20
Affected versions: TSL 1.1, 1.2, 1.5

- --------------------------------------------------------------------------
Package description:
  LDAP servers and clients, as well as interfaces to other protocols.
  Note that this does not include the slapd interface to X.500 and
  therefore does not require the ISODE package.
  

Problem description:
  Several minor security issues where fixed in the new upstream version:
  1.2.13


Action:
  We recommend that all systems with this package installed be upgraded.
  Please note that if you do not need the functionality provided by this
  package, you may want to remove it from your system.


Location:
  All TSL updates are available from
  <URI:http://www.trustix.net/pub/Trustix/updates/>
  <URI:ftp://ftp.trustix.net/pub/Trustix/updates/>


About Trustix Secure Linux:
  Trustix Secure Linux is a small Linux distribution for servers. With focus
  on security and stability, the system is painlessly kept safe and up to
  date from day one using swup, the automated software updater.


Automatic updates:
  Users of the SWUP tool can enjoy having updates automatically
  installed using 'swup --upgrade'.

  Get SWUP from:
  <URI:ftp://ftp.trustix.net/pub/Trustix/software/swup/>


Public testing:
  These packages have been available for public testing for some time.
  If you want to contribute by testing the various packages in the
  testing tree, please feel free to share your findings on the
  tsl-discuss mailinglist.
  The testing tree is located at
  <URI:http://www.trustix.net/pub/Trustix/testing/>
  <URI:ftp://ftp.trustix.net/pub/Trustix/testing/>
  

Questions?
  Check out our mailing lists:
  <URI:http://www.trustix.net/support/>


Verification:
  This advisory along with all TSL packages are signed with the TSL sign key.
  This key is available from:
  <URI:http://www.trustix.net/TSL-GPG-KEY>

  The advisory itself is available from the errata pages at
  <URI:http://www.trustix.net/errata/trustix-1.2/> and
  <URI:http://www.trustix.net/errata/trustix-1.5/>
  or directly at
  <URI:http://www.trustix.net/errata/misc/2003/TSL-2003-0002-openldap.asc.txt>


MD5sums of the packages:
- --------------------------------------------------------------------------
961aa23b833fc7d2e13a485d0562af2e  ./1.5/SRPMS/openldap1-1.2.13-1tr.src.rpm
c71ef6c3a75b869d975503ad0e83ce28  ./1.5/RPMS/openldap1-servers-1.2.13-1tr.i586.rpm
61075ed423e0eae96eb552d3c758a0fb  ./1.5/RPMS/openldap1-devel-1.2.13-1tr.i586.rpm
0c4c1a15002b12f5c2f077e2ce2df869  ./1.5/RPMS/openldap1-1.2.13-1tr.i586.rpm
71a5eaebff54762c63cdd9a6b93bcfcb  ./1.2/SRPMS/openldap-1.2.13-1tr.src.rpm
eb016b044b715bd2cb3892636d9c6e16  ./1.2/RPMS/openldap-servers-1.2.13-1tr.i586.rpm
3d577b44c6a18690f65dd8d8f202551f  ./1.2/RPMS/openldap-devel-1.2.13-1tr.i586.rpm
f8be99717b1c6af180303415fb1c6e38  ./1.2/RPMS/openldap-1.2.13-1tr.i586.rpm
71a5eaebff54762c63cdd9a6b93bcfcb  ./1.1/SRPMS/openldap-1.2.13-1tr.src.rpm
8263bbf0ebc495ad53411a73758b304c  ./1.1/RPMS/openldap-servers-1.2.13-1tr.i586.rpm
497000b86fed6a278eae60fcb2fef126  ./1.1/RPMS/openldap-devel-1.2.13-1tr.i586.rpm
5d96b458b129256406f97262a0c9eb1c  ./1.1/RPMS/openldap-1.2.13-1tr.i586.rpm
- --------------------------------------------------------------------------


Trustix Security Team

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE+ViwYwRTcg4BxxS0RAnubAJ90OifTyJ4G5X72wtSzWE7P7LYYjACdGvza
+ZKD0wEcH2qv+r5qFi1l+m0=
=8gRl
-----END PGP SIGNATURE-----

_______________________________________________
tsl-announce mailing list
tsl-announce@trustix.org
http://www.trustix.org/mailman/listinfo/tsl-announce
(Log in to post comments)

Copyright © 2008, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds
Powered by Rackspace Managed Hosting.