Request 844183: Submit openldap2 - openSUSE Build Service

Overview

Request 844183 accepted

- bsc#1175568 CVE-2020-8027
openldap_update_modules_path.sh has a number of issues in it's
design that lead to security issues. This file has been removed,
from the package, and the %post execution of the install. The
function is replaced by /usr/sbin/slapd-ldif-update-crc and
/usr/lib/openldap/fixup-modulepath, through the addition of the
source files:
* fixup-modulepath.sh
* slapd-ldif-update-crc.sh
* update-crc.sh

Created by firstyear about 4 years ago
In state accepted
Package maintainers: jengelh and jmcdough

Submit openldap2

Comments for request 844183 0

Login required, please login in order to comment

Request History

firstyear created request about 4 years ago

- bsc#1175568 CVE-2020-8027
openldap_update_modules_path.sh has a number of issues in it's
design that lead to security issues. This file has been removed,
from the package, and the %post execution of the install. The
function is replaced by /usr/sbin/slapd-ldif-update-crc and
/usr/lib/openldap/fixup-modulepath, through the addition of the
source files:
* fixup-modulepath.sh
* slapd-ldif-update-crc.sh
* update-crc.sh

stroeder accepted request about 4 years ago

openSUSE Build Service is sponsored by