An updated nss_ldap package is now available for Red Hat Enterprise Linux 5.
The nss_ldap package includes two LDAP access clients: nss_ldap and
pam_ldap. nss_ldap is a plugin for the standard C library which allows
applications to look up information about users and groups using a
directory server. The pam_ldap module is a Pluggable Authentication Module
(PAM) which provides for authentication, authorization and password
changing against LDAP servers.
This update fixes the following bug in the nss_ldap module:
* a NULL value was incorrectly assigned to an ldap_parse_result argument if
the bind operation timed out. Consequently, if the nss_ldap module was
configured to encrypt traffic to the directory server using the "ssl
start_tls" option and TLS negotiation took longer than the "bind_timelimit"
value set in /etc/ldap.conf, the client module would crash with an
Assertion error. With this update, the ldap_parse_result argument is not
set to NULL if the bind operation times out and the Assertion error no
longer occurs. (BZ#529376)
Note: The default bind_timelimit is 30 seconds and this bug did not
normally trigger unless the value was set to less than this default.
Further, it was possible to workaround this issue by increasing the
bind_timelimit (for example, to 60 seconds). This only masked the
underlying issue, however.
All nss_ldap users are advised to upgrade to this updated package, which
resolves this issue.
Before applying this update, make sure that all previously-released errata
relevant to your system have been applied.
This update is available via Red Hat Network. Details on how to use the Red
Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259
| Red Hat Enterprise Linux (v. 5 server) |
|
| SRPMS: |
| nss_ldap-253-22.el5_4.src.rpm |
bb69d9abff2509aab5b7a67c70440981 |
| |
| IA-32: |
| nss_ldap-253-22.el5_4.i386.rpm |
5ab9e40a619118bb93815a7818a13d34 |
| |
| IA-64: |
| nss_ldap-253-22.el5_4.i386.rpm |
5ab9e40a619118bb93815a7818a13d34 |
| nss_ldap-253-22.el5_4.ia64.rpm |
96c74a1ffd3a8d40d0719c84f9a52c1a |
| |
| PPC: |
| nss_ldap-253-22.el5_4.ppc.rpm |
ed2f26a6a70f4a64e852d1bb01d4e35d |
| nss_ldap-253-22.el5_4.ppc64.rpm |
484429f569957423f6c6a746f8087b56 |
| |
| s390x: |
| nss_ldap-253-22.el5_4.s390.rpm |
8a66a3bc2e725525da9bf0d6a457d0bf |
| nss_ldap-253-22.el5_4.s390x.rpm |
c60bbf8f705d0020e8057cf3b6650725 |
| |
| x86_64: |
| nss_ldap-253-22.el5_4.i386.rpm |
5ab9e40a619118bb93815a7818a13d34 |
| nss_ldap-253-22.el5_4.x86_64.rpm |
c4ed08ee62fed1bb9a18e341dbfc69f7 |
| |
| Red Hat Enterprise Linux Desktop (v. 5 client) |
|
| SRPMS: |
| nss_ldap-253-22.el5_4.src.rpm |
bb69d9abff2509aab5b7a67c70440981 |
| |
| IA-32: |
| nss_ldap-253-22.el5_4.i386.rpm |
5ab9e40a619118bb93815a7818a13d34 |
| |
| x86_64: |
| nss_ldap-253-22.el5_4.i386.rpm |
5ab9e40a619118bb93815a7818a13d34 |
| nss_ldap-253-22.el5_4.x86_64.rpm |
c4ed08ee62fed1bb9a18e341dbfc69f7 |
| |
| Red Hat Enterprise Linux EUS (v. 5.4.z server) |
|
| SRPMS: |
| nss_ldap-253-22.el5_4.src.rpm |
bb69d9abff2509aab5b7a67c70440981 |
| |
| IA-32: |
| nss_ldap-253-22.el5_4.i386.rpm |
5ab9e40a619118bb93815a7818a13d34 |
| |
| IA-64: |
| nss_ldap-253-22.el5_4.i386.rpm |
5ab9e40a619118bb93815a7818a13d34 |
| nss_ldap-253-22.el5_4.ia64.rpm |
96c74a1ffd3a8d40d0719c84f9a52c1a |
| |
| PPC: |
| nss_ldap-253-22.el5_4.ppc.rpm |
ed2f26a6a70f4a64e852d1bb01d4e35d |
| nss_ldap-253-22.el5_4.ppc64.rpm |
484429f569957423f6c6a746f8087b56 |
| |
| s390x: |
| nss_ldap-253-22.el5_4.s390.rpm |
8a66a3bc2e725525da9bf0d6a457d0bf |
| nss_ldap-253-22.el5_4.s390x.rpm |
c60bbf8f705d0020e8057cf3b6650725 |
| |
| x86_64: |
| nss_ldap-253-22.el5_4.i386.rpm |
5ab9e40a619118bb93815a7818a13d34 |
| nss_ldap-253-22.el5_4.x86_64.rpm |
c4ed08ee62fed1bb9a18e341dbfc69f7 |
| |
(The unlinked packages above are only available from the Red Hat Network)
|
529376 - Random Assertion `r != ((void *)0)' failed.
nss_ldap bug fix update