-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.0 Source: openldap Binary: slapd, slapd-smbk5pwd, ldap-utils, libldap-2.4-2, libldap-2.4-2-dbg, libldap2-dev, slapd-dbg Architecture: any Version: 2.4.40-4 Maintainer: Debian OpenLDAP Maintainers <[email protected]> Uploaders: Roland Bauerschmidt <[email protected]>, Steve Langasek <[email protected]>, Torsten Landschoff <[email protected]>, Matthijs Möhlmann <[email protected]>, Timo Aaltonen <[email protected]>, Ryan Tandy <[email protected]> Homepage: http://www.openldap.org/ Standards-Version: 3.9.1 Vcs-Browser: http://anonscm.debian.org/gitweb/?p=pkg-openldap/openldap.git Vcs-Git: git://anonscm.debian.org/pkg-openldap/openldap.git Build-Depends: debhelper (>= 8.9.0~), dpkg-dev (>= 1.16.1), libdb5.3-dev, nettle-dev, libgnutls28-dev, unixodbc-dev, libncurses5-dev, libperl-dev (>= 5.8.0), libsasl2-dev, libslp-dev, libltdl-dev | libltdl3-dev (>= 1.4.3), libwrap0-dev, perl, po-debconf, quilt (>= 0.46-7), groff-base, time, heimdal-multidev, dh-autoreconf Build-Conflicts: autoconf2.13, bind-dev, libbind-dev, libicu-dev Package-List: ldap-utils deb net optional arch=any libldap-2.4-2 deb libs standard arch=any libldap-2.4-2-dbg deb debug extra arch=any libldap2-dev deb libdevel extra arch=any slapd deb net optional arch=any slapd-dbg deb debug extra arch=any slapd-smbk5pwd deb net extra arch=any Checksums-Sha1: 587baa8257d51f3908975b931f87c8c3e6a17e06 4799804 openldap_2.4.40.orig.tar.gz da5218904f2f5e221143e42b69938c039e0d1515 177329 openldap_2.4.40-4.diff.gz Checksums-Sha256: 6d3e7ba688382bebca3410125d3f801a7fd2a5da6352b58b0663ef20bc3adbb3 4799804 openldap_2.4.40.orig.tar.gz 3be4cc54cfdcdb8d17fd535bd4a374744bc84c9b4ae843521511683cc7439302 177329 openldap_2.4.40-4.diff.gz Files: 03a8658e62131c0cdbf85dd604e498db 4799804 openldap_2.4.40.orig.tar.gz ee2a355182429e1e1a44ed5023066bc2 177329 openldap_2.4.40-4.diff.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBAgAGBQJU2RC4AAoJEKmDSiJSB45OAFEQALy41MF3mBSKSK7i324Vjsq4 45mFs3/o4E1qUvg5ueNLA3QZzC4xwAJ8B8lZHXpf3BblJ9FmidluCgvYPVuMdY+v 3A6O1Sww3afvMNpOtBkfa6Rhv8FJBQmOnL3nS9qO2Q1cdiSYaxR5yz8EAPRDhKEy rTI89wXNNCIEqNwBc/gHRZqA7ZFwdoO9jefALncWLEKj7l9k1xR16oWwq1sVoea0 NWiWYsSpxMVhMGtoUDo/Ul8xgHo/nHO6wajqVMA3r+LLth1k3bIp/IlebW1fA3t7 2HUgc1u8wXo6OLwYYUc4d0IVpqMWhhwOySqJ054dKQylgARuok1bCnoMxfZg0ZUR KkhvZ5BMQ05M7uLMdYALOuvfqEtQVHzVoXO3100C8DJn+wz+hUPrfiziuBjZ86x0 jdzi+zNP6ZWQlrTam27WCkiAqPqe5gg08+6Q0BhmC9Bgdini+80xpD06jXW2zpQ/ IuirykuaVIr1xWAt/cIN+9frFP/5Bnv1msql/3hdsW6FevbZMp81WbxsAVg9ogLe X66d0f6VpEP5p1wj5+To2K6V7qg4HZyralvHiiPlBmqzaNikq0BL/10vZB6S+9Pe UdhaOUipyxDKDvAEYWqc0Bb9aDjORx6FgKfH8KR0SMmYfuRSGWMLdia4H9CPJtO3 oe19EO4o1rtuNsoUgg0u =9KPA -----END PGP SIGNATURE----- Changes: openldap (2.4.40-4) unstable; urgency=medium * debian/patches/ITS8027-deref-reject-empty-attr-list.patch: Import upstream patch to fix a crash when a search includes the Deref control with an empty attribute list. (ITS#8027) (CVE-2015-1545, Closes: #776988) * debian/patches/ITS8046-fix-vrFilter_free-crash.patch: Import upstream patch to fix a double free triggered by certain search queries using the Matched Values control. (ITS#8046) (CVE-2015-1546, Closes: #776991) -- Ryan Tandy <[email protected]> Sun, 08 Feb 2015 20:19:11 +0000
