Univention Bugzilla – Bug 54783
openldap: Multiple issues (5.0)
Last modified: 2022-05-25 18:33:31 CEST
New Debian openldap 2.4.47+dfsg-3+deb10u7A~5.0.1.202205211909 fixes: This update addresses the following issue: * OpenLDAP SQL injection (CVE-2022-29155)
--- mirror/ftp/pool/main/o/openldap/openldap_2.4.47+dfsg-3+deb10u6A~5.0.0.202203311540.dsc +++ apt/ucs_5.0-0-errata5.0-1/source/openldap_2.4.47+dfsg-3+deb10u7A~5.0.1.202205211909.dsc @@ -1,4 +1,4 @@ -2.4.47+dfsg-3+deb10u6A~5.0.0.202203311540 [Thu, 31 Mar 2022 15:40:28 +0200] Univention builddaemon <buildd@univention.de>: +2.4.47+dfsg-3+deb10u7A~5.0.1.202205211909 [Sat, 21 May 2022 19:09:54 +0200] Univention builddaemon <buildd@univention.de>: * UCS auto build. The following patches have been applied to the original source package 02-disable-some-tests @@ -42,6 +42,10 @@ 99_ITS-9171-Insert-callback-in-the-right-place 99_preferredDeliveryMethod_syntax +2.4.47+dfsg-3+deb10u7 [Sat, 14 May 2022 11:35:44 -0700] Ryan Tandy <ryan@nardis.ca>: + + * Fix SQL injection in back-sql (ITS#9815) (CVE-2022-29155) + 2.4.47+dfsg-3+deb10u6 [Sun, 14 Feb 2021 10:32:34 -0800] Ryan Tandy <ryan@nardis.ca>: * Fix slapd assertion failure in Certificate List Exact Assertion validation <http://piuparts.knut.univention.de/5.0-1/#7853324854774885266>
OK: yaml OK: announce_errata OK: patch ~OK: piuparts unclean package re-install upstream [5.0-1] 36dd980d5c Bug #54783: openldap 2.4.47+dfsg-3+deb10u7A~5.0.1.202205211909 doc/errata/staging/openldap.yaml | 12 ++++++++++++ 1 file changed, 12 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x313>