Bug Fix Advisory openldap bug fix and enhancement update

Advisory: RHBA-2008:0701-5
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2008-07-24
Last updated on: 2008-07-24
Affected Products: Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux WS (v. 4)
OVAL: N/A

Details

Updated openldap packages that fix several bugs and add an enhancement are
now available.

OpenLDAP is an open source suite of LDAP (Lightweight Directory Access
Protocol) applications and development tools. The openldap package contains
configuration files, libraries, and documentation for OpenLDAP.

These updated openldap packages provide fixes for the following bugs:

* the slapd server with the BDB backend no longer crashes when multiple
clients are modifying one attribute simultaneously.

* the slapd server with the BDB backend no longer leaks memory when adding
or modifying attributes.

* the entryUUID attribute is now correctly replicated to slave LDAP servers.

* the OpenLDAP client library now properly authenticates with an LDAP
server when chasing referrals using SASL authentication.

* the init script now reports a warning if the slapd daemon cannot read a
TLS certificate file.

In addition, these updated packages provide the following enhancement:
OpenLDAP client tools now allow their Bind timout to be configured, using
the '-o nettimeout=x' command line option, where 'x' is a number indicating
the timeout length in seconds.

Users are advised to upgrade to these updated openldap packages, which
resolve these issues and add this enhancement.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Updated packages

Red Hat Desktop (v. 4)
SRPMS:
openldap-2.2.13-12.el4.src.rpm     ca0c80792cafdf3b1e67d75f09b4c553
 
IA-32:
compat-openldap-2.1.30-12.el4.i386.rpm     0e73615dee849972de9d513eff6b9f53
openldap-2.2.13-12.el4.i386.rpm     e9e88d224511d2884e924d08876d35a6
openldap-clients-2.2.13-12.el4.i386.rpm     e7a05c993e9edf98ac7d963913f31330
openldap-devel-2.2.13-12.el4.i386.rpm     10b76a17180c77ee8ca3725818c94d04
openldap-servers-2.2.13-12.el4.i386.rpm     209d19c0bbe062cf758d96e16646f2e8
openldap-servers-sql-2.2.13-12.el4.i386.rpm     d795288312b95f16d3537369ca2c18ed
 
x86_64:
compat-openldap-2.1.30-12.el4.i386.rpm     0e73615dee849972de9d513eff6b9f53
compat-openldap-2.1.30-12.el4.x86_64.rpm     c3b086f3432c2641c1bd51a71aefbe29
openldap-2.2.13-12.el4.i386.rpm     e9e88d224511d2884e924d08876d35a6
openldap-2.2.13-12.el4.x86_64.rpm     4a7670d0541aae05c7c709b02af97a16
openldap-clients-2.2.13-12.el4.x86_64.rpm     262acc82ef1e44958b0cd7704252e637
openldap-devel-2.2.13-12.el4.x86_64.rpm     491ade86385c20a2a3e3fd8cd299d31e
openldap-servers-2.2.13-12.el4.x86_64.rpm     092d03e67ce2cafdc149942113e04373
openldap-servers-sql-2.2.13-12.el4.x86_64.rpm     5e1dcfd20e7ddd9c38757d53746c668a
 
Red Hat Enterprise Linux AS (v. 4)
SRPMS:
openldap-2.2.13-12.el4.src.rpm     ca0c80792cafdf3b1e67d75f09b4c553
 
IA-32:
compat-openldap-2.1.30-12.el4.i386.rpm     0e73615dee849972de9d513eff6b9f53
openldap-2.2.13-12.el4.i386.rpm     e9e88d224511d2884e924d08876d35a6
openldap-clients-2.2.13-12.el4.i386.rpm     e7a05c993e9edf98ac7d963913f31330
openldap-devel-2.2.13-12.el4.i386.rpm     10b76a17180c77ee8ca3725818c94d04
openldap-servers-2.2.13-12.el4.i386.rpm     209d19c0bbe062cf758d96e16646f2e8
openldap-servers-sql-2.2.13-12.el4.i386.rpm     d795288312b95f16d3537369ca2c18ed
 
IA-64:
compat-openldap-2.1.30-12.el4.i386.rpm     0e73615dee849972de9d513eff6b9f53
compat-openldap-2.1.30-12.el4.ia64.rpm     907cde1800b6eeb095b407c4a80d784a
openldap-2.2.13-12.el4.i386.rpm     e9e88d224511d2884e924d08876d35a6
openldap-2.2.13-12.el4.ia64.rpm     c92ec76cfae693d2b6dc576f40226427
openldap-clients-2.2.13-12.el4.ia64.rpm     f382710e5bdc8734de4bb8d8ef2e4946
openldap-devel-2.2.13-12.el4.ia64.rpm     ac88993a9fa234f96d91a736cd2521eb
openldap-servers-2.2.13-12.el4.ia64.rpm     aa359369050b97956286c197fbfee67c
openldap-servers-sql-2.2.13-12.el4.ia64.rpm     63976c9e454d201bd4896e575e2bb3fb
 
PPC:
compat-openldap-2.1.30-12.el4.ppc.rpm     ffb8a2c65d12380a2bf2103f1673b13c
compat-openldap-2.1.30-12.el4.ppc64.rpm     2fbb887db269bf0dad1cfe55b2c17e95
openldap-2.2.13-12.el4.ppc.rpm     a0faa0e0537c55a6528c3d5d85558d3c
openldap-2.2.13-12.el4.ppc64.rpm     48dbcaa807be79be3647c83e1cf81af3
openldap-clients-2.2.13-12.el4.ppc.rpm     c737c6a0d5ed494294eb0e9dc9cc609c
openldap-devel-2.2.13-12.el4.ppc.rpm     50d766bd6704179ef8d9ef1bf57ba8c3
openldap-servers-2.2.13-12.el4.ppc.rpm     c544009a1e2015622f9d213abef9e31a
openldap-servers-sql-2.2.13-12.el4.ppc.rpm     6dc56cc35c0edfc08fff89f71187ec2a
 
s390:
compat-openldap-2.1.30-12.el4.s390.rpm     7a4728689abc6ed6bdb27fd2f60e3fb9
openldap-2.2.13-12.el4.s390.rpm     0f786341fff14bf1f075ef86aedf7271
openldap-clients-2.2.13-12.el4.s390.rpm     cab7fdf15fbb06565ad6c37c3c7355f4
openldap-devel-2.2.13-12.el4.s390.rpm     a29c558b3291bb028a285a031712a952
openldap-servers-2.2.13-12.el4.s390.rpm     947b841cc912ec82b7adbacdf4533e81
openldap-servers-sql-2.2.13-12.el4.s390.rpm     9c8f554ae62f703c210e7bc5a426d7d6
 
s390x:
compat-openldap-2.1.30-12.el4.s390.rpm     7a4728689abc6ed6bdb27fd2f60e3fb9
compat-openldap-2.1.30-12.el4.s390x.rpm     819e72d7dafbf929963619e2d6375671
openldap-2.2.13-12.el4.s390.rpm     0f786341fff14bf1f075ef86aedf7271
openldap-2.2.13-12.el4.s390x.rpm     a5d80e4784c21f404745942d9bb39603
openldap-clients-2.2.13-12.el4.s390x.rpm     81c8a2c20d6e2f0d2b931116cfa5bc41
openldap-devel-2.2.13-12.el4.s390x.rpm     40a35d5d3ee1c6706d8200868be86d49
openldap-servers-2.2.13-12.el4.s390x.rpm     4ad4fafdb63efa0b451c180d906fc4ed
openldap-servers-sql-2.2.13-12.el4.s390x.rpm     847180e491689b09203eed35711d4022
 
x86_64:
compat-openldap-2.1.30-12.el4.i386.rpm     0e73615dee849972de9d513eff6b9f53
compat-openldap-2.1.30-12.el4.x86_64.rpm     c3b086f3432c2641c1bd51a71aefbe29
openldap-2.2.13-12.el4.i386.rpm     e9e88d224511d2884e924d08876d35a6
openldap-2.2.13-12.el4.x86_64.rpm     4a7670d0541aae05c7c709b02af97a16
openldap-clients-2.2.13-12.el4.x86_64.rpm     262acc82ef1e44958b0cd7704252e637
openldap-devel-2.2.13-12.el4.x86_64.rpm     491ade86385c20a2a3e3fd8cd299d31e
openldap-servers-2.2.13-12.el4.x86_64.rpm     092d03e67ce2cafdc149942113e04373
openldap-servers-sql-2.2.13-12.el4.x86_64.rpm     5e1dcfd20e7ddd9c38757d53746c668a
 
Red Hat Enterprise Linux ES (v. 4)
SRPMS:
openldap-2.2.13-12.el4.src.rpm     ca0c80792cafdf3b1e67d75f09b4c553
 
IA-32:
compat-openldap-2.1.30-12.el4.i386.rpm     0e73615dee849972de9d513eff6b9f53
openldap-2.2.13-12.el4.i386.rpm     e9e88d224511d2884e924d08876d35a6
openldap-clients-2.2.13-12.el4.i386.rpm     e7a05c993e9edf98ac7d963913f31330
openldap-devel-2.2.13-12.el4.i386.rpm     10b76a17180c77ee8ca3725818c94d04
openldap-servers-2.2.13-12.el4.i386.rpm     209d19c0bbe062cf758d96e16646f2e8
openldap-servers-sql-2.2.13-12.el4.i386.rpm     d795288312b95f16d3537369ca2c18ed
 
IA-64:
compat-openldap-2.1.30-12.el4.i386.rpm     0e73615dee849972de9d513eff6b9f53
compat-openldap-2.1.30-12.el4.ia64.rpm     907cde1800b6eeb095b407c4a80d784a
openldap-2.2.13-12.el4.i386.rpm     e9e88d224511d2884e924d08876d35a6
openldap-2.2.13-12.el4.ia64.rpm     c92ec76cfae693d2b6dc576f40226427
openldap-clients-2.2.13-12.el4.ia64.rpm     f382710e5bdc8734de4bb8d8ef2e4946
openldap-devel-2.2.13-12.el4.ia64.rpm     ac88993a9fa234f96d91a736cd2521eb
openldap-servers-2.2.13-12.el4.ia64.rpm     aa359369050b97956286c197fbfee67c
openldap-servers-sql-2.2.13-12.el4.ia64.rpm     63976c9e454d201bd4896e575e2bb3fb
 
x86_64:
compat-openldap-2.1.30-12.el4.i386.rpm     0e73615dee849972de9d513eff6b9f53
compat-openldap-2.1.30-12.el4.x86_64.rpm     c3b086f3432c2641c1bd51a71aefbe29
openldap-2.2.13-12.el4.i386.rpm     e9e88d224511d2884e924d08876d35a6
openldap-2.2.13-12.el4.x86_64.rpm     4a7670d0541aae05c7c709b02af97a16
openldap-clients-2.2.13-12.el4.x86_64.rpm     262acc82ef1e44958b0cd7704252e637
openldap-devel-2.2.13-12.el4.x86_64.rpm     491ade86385c20a2a3e3fd8cd299d31e
openldap-servers-2.2.13-12.el4.x86_64.rpm     092d03e67ce2cafdc149942113e04373
openldap-servers-sql-2.2.13-12.el4.x86_64.rpm     5e1dcfd20e7ddd9c38757d53746c668a
 
Red Hat Enterprise Linux WS (v. 4)
SRPMS:
openldap-2.2.13-12.el4.src.rpm     ca0c80792cafdf3b1e67d75f09b4c553
 
IA-32:
compat-openldap-2.1.30-12.el4.i386.rpm     0e73615dee849972de9d513eff6b9f53
openldap-2.2.13-12.el4.i386.rpm     e9e88d224511d2884e924d08876d35a6
openldap-clients-2.2.13-12.el4.i386.rpm     e7a05c993e9edf98ac7d963913f31330
openldap-devel-2.2.13-12.el4.i386.rpm     10b76a17180c77ee8ca3725818c94d04
openldap-servers-2.2.13-12.el4.i386.rpm     209d19c0bbe062cf758d96e16646f2e8
openldap-servers-sql-2.2.13-12.el4.i386.rpm     d795288312b95f16d3537369ca2c18ed
 
IA-64:
compat-openldap-2.1.30-12.el4.i386.rpm     0e73615dee849972de9d513eff6b9f53
compat-openldap-2.1.30-12.el4.ia64.rpm     907cde1800b6eeb095b407c4a80d784a
openldap-2.2.13-12.el4.i386.rpm     e9e88d224511d2884e924d08876d35a6
openldap-2.2.13-12.el4.ia64.rpm     c92ec76cfae693d2b6dc576f40226427
openldap-clients-2.2.13-12.el4.ia64.rpm     f382710e5bdc8734de4bb8d8ef2e4946
openldap-devel-2.2.13-12.el4.ia64.rpm     ac88993a9fa234f96d91a736cd2521eb
openldap-servers-2.2.13-12.el4.ia64.rpm     aa359369050b97956286c197fbfee67c
openldap-servers-sql-2.2.13-12.el4.ia64.rpm     63976c9e454d201bd4896e575e2bb3fb
 
x86_64:
compat-openldap-2.1.30-12.el4.i386.rpm     0e73615dee849972de9d513eff6b9f53
compat-openldap-2.1.30-12.el4.x86_64.rpm     c3b086f3432c2641c1bd51a71aefbe29
openldap-2.2.13-12.el4.i386.rpm     e9e88d224511d2884e924d08876d35a6
openldap-2.2.13-12.el4.x86_64.rpm     4a7670d0541aae05c7c709b02af97a16
openldap-clients-2.2.13-12.el4.x86_64.rpm     262acc82ef1e44958b0cd7704252e637
openldap-devel-2.2.13-12.el4.x86_64.rpm     491ade86385c20a2a3e3fd8cd299d31e
openldap-servers-2.2.13-12.el4.x86_64.rpm     092d03e67ce2cafdc149942113e04373
openldap-servers-sql-2.2.13-12.el4.x86_64.rpm     5e1dcfd20e7ddd9c38757d53746c668a
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

264441 - incorrect hostname in SASL bind within rebind function
402651 - Openldap server crashes on high modify load
431682 - openldap: ldapmodify segfaults on request with NOOP control


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/