Skip to navigation

Bug Fix Advisory nss_ldap bug fix update

Advisory: RHBA-2010:0538-1
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2010-07-19
Last updated on: 2010-07-19
Affected Products: Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux AS (v. 4.8.z)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux ES (v. 4.8.z)
Red Hat Enterprise Linux WS (v. 4)

Details

An updated nss_ldap package is now available.

The nss_ldap package contains the nss_ldap and pam_ldap modules. The nss_ldap
module is a plug-in which allows applications to retrieve information about
users and groups from a directory server.

This updated nss_ldap package fixes the following bugs:

* under certain circumstances, the nss_ldap module may have caused the
application to leak file descriptors. As a result, the number of open sockets
could reach the maximum limit of 1024. With this update, this error has been
fixed, and file descriptors are no longer leaking. (BZ#584499)

* previously, enabling the "nss_connect_policy oneshot" option in the
/etc/ldap.conf configuration file may have caused the "id <username>" command to
exit with the following error message:

ldap_result: Assertion `ld != ((void *)0)' failed.

With this update, enabling "nss_connect_policy oneshot" works as expected, and
running the id command no longer fails. (BZ#584502)

* in certain cases, nss_ldap may have failed to get a response from the
Lightweight Directory Access Protocol (LDAP) server, making the client
temporarily unable to query it. This error has been fixed, and getting a
response from the server now works as expected. (BZ#602964)

* being built without the Internet Protocol version 6 (IPv6) support, when the
"gethostbyname2()" function was used, nss_ldap used to return the Internet
Protocol version 4 (IPv4) address even though the IPv6 had been requested. With
this update, nss_ldap produces the expected output. (BZ#602966)

All users of nss_ldap are advised to upgrade to this updated package, which
resolves these issues.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

Red Hat Desktop (v. 4)

SRPMS:
nss_ldap-253-7.el4_8.3.src.rpm
File outdated by:  RHBA-2011:0239
    MD5: ad2f24bbe8380fd5cf2112d74d188587
SHA-256: 747d8e1d373d5b3f02af9685e47295759578dcbb1923b5d0030d4bacf64c65b4
 
IA-32:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2011:0239
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
 
x86_64:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2011:0239
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
nss_ldap-253-7.el4_8.3.x86_64.rpm
File outdated by:  RHBA-2011:0239
    MD5: 6176154253001f275b9eed6527517741
SHA-256: df5b64663e21d410fb96375d6a4713e778dba7ecf62da1c64616bb0383bf83e2
 
Red Hat Enterprise Linux AS (v. 4)

SRPMS:
nss_ldap-253-7.el4_8.3.src.rpm
File outdated by:  RHBA-2011:0239
    MD5: ad2f24bbe8380fd5cf2112d74d188587
SHA-256: 747d8e1d373d5b3f02af9685e47295759578dcbb1923b5d0030d4bacf64c65b4
 
IA-32:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2011:0239
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
 
IA-64:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2011:0239
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
nss_ldap-253-7.el4_8.3.ia64.rpm
File outdated by:  RHBA-2011:0239
    MD5: 822b7369ce66c51237dd5518a9e2f572
SHA-256: 9ede78328a5bf2b2d72bf90856eb890163887340ae8fb378f360380bfc74660a
 
PPC:
nss_ldap-253-7.el4_8.3.ppc.rpm
File outdated by:  RHBA-2011:0239
    MD5: 58a75d72f3cce286b36ca1fd79bf8c11
SHA-256: d4c29cc757bb21c461843529a7e4800e2a963728cb3fcb46dcb2f6d91b04624f
nss_ldap-253-7.el4_8.3.ppc64.rpm
File outdated by:  RHBA-2011:0239
    MD5: 3c19176e0578e2de847121c872a6c1e8
SHA-256: 724e21979b938f92321b3d364c539549891555555e2a65834cd308e1adee4b89
 
s390:
nss_ldap-253-7.el4_8.3.s390.rpm
File outdated by:  RHBA-2011:0239
    MD5: 6b6543b3067506b5121e47c6c4d26310
SHA-256: b904198775e0a5399db15753158a26f1eb062bd3ef805a9176773d5a5de582a8
 
s390x:
nss_ldap-253-7.el4_8.3.s390.rpm
File outdated by:  RHBA-2011:0239
    MD5: 6b6543b3067506b5121e47c6c4d26310
SHA-256: b904198775e0a5399db15753158a26f1eb062bd3ef805a9176773d5a5de582a8
nss_ldap-253-7.el4_8.3.s390x.rpm
File outdated by:  RHBA-2011:0239
    MD5: fb5336c31bbe8db58d6bb55180f532be
SHA-256: 04131e8ce7551329825e7e3c4d74d0327b8c6904ac5c5b4875406959377543a6
 
x86_64:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2011:0239
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
nss_ldap-253-7.el4_8.3.x86_64.rpm
File outdated by:  RHBA-2011:0239
    MD5: 6176154253001f275b9eed6527517741
SHA-256: df5b64663e21d410fb96375d6a4713e778dba7ecf62da1c64616bb0383bf83e2
 
Red Hat Enterprise Linux AS (v. 4.8.z)

SRPMS:
nss_ldap-253-7.el4_8.3.src.rpm
File outdated by:  RHBA-2011:0239
    MD5: ad2f24bbe8380fd5cf2112d74d188587
SHA-256: 747d8e1d373d5b3f02af9685e47295759578dcbb1923b5d0030d4bacf64c65b4
 
IA-32:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2010:0630
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
 
IA-64:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2010:0630
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
nss_ldap-253-7.el4_8.3.ia64.rpm
File outdated by:  RHBA-2010:0630
    MD5: 822b7369ce66c51237dd5518a9e2f572
SHA-256: 9ede78328a5bf2b2d72bf90856eb890163887340ae8fb378f360380bfc74660a
 
PPC:
nss_ldap-253-7.el4_8.3.ppc.rpm
File outdated by:  RHBA-2010:0630
    MD5: 58a75d72f3cce286b36ca1fd79bf8c11
SHA-256: d4c29cc757bb21c461843529a7e4800e2a963728cb3fcb46dcb2f6d91b04624f
nss_ldap-253-7.el4_8.3.ppc64.rpm
File outdated by:  RHBA-2010:0630
    MD5: 3c19176e0578e2de847121c872a6c1e8
SHA-256: 724e21979b938f92321b3d364c539549891555555e2a65834cd308e1adee4b89
 
s390:
nss_ldap-253-7.el4_8.3.s390.rpm
File outdated by:  RHBA-2010:0630
    MD5: 6b6543b3067506b5121e47c6c4d26310
SHA-256: b904198775e0a5399db15753158a26f1eb062bd3ef805a9176773d5a5de582a8
 
s390x:
nss_ldap-253-7.el4_8.3.s390.rpm
File outdated by:  RHBA-2010:0630
    MD5: 6b6543b3067506b5121e47c6c4d26310
SHA-256: b904198775e0a5399db15753158a26f1eb062bd3ef805a9176773d5a5de582a8
nss_ldap-253-7.el4_8.3.s390x.rpm
File outdated by:  RHBA-2010:0630
    MD5: fb5336c31bbe8db58d6bb55180f532be
SHA-256: 04131e8ce7551329825e7e3c4d74d0327b8c6904ac5c5b4875406959377543a6
 
x86_64:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2010:0630
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
nss_ldap-253-7.el4_8.3.x86_64.rpm
File outdated by:  RHBA-2010:0630
    MD5: 6176154253001f275b9eed6527517741
SHA-256: df5b64663e21d410fb96375d6a4713e778dba7ecf62da1c64616bb0383bf83e2
 
Red Hat Enterprise Linux ES (v. 4)

SRPMS:
nss_ldap-253-7.el4_8.3.src.rpm
File outdated by:  RHBA-2011:0239
    MD5: ad2f24bbe8380fd5cf2112d74d188587
SHA-256: 747d8e1d373d5b3f02af9685e47295759578dcbb1923b5d0030d4bacf64c65b4
 
IA-32:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2011:0239
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
 
IA-64:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2011:0239
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
nss_ldap-253-7.el4_8.3.ia64.rpm
File outdated by:  RHBA-2011:0239
    MD5: 822b7369ce66c51237dd5518a9e2f572
SHA-256: 9ede78328a5bf2b2d72bf90856eb890163887340ae8fb378f360380bfc74660a
 
x86_64:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2011:0239
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
nss_ldap-253-7.el4_8.3.x86_64.rpm
File outdated by:  RHBA-2011:0239
    MD5: 6176154253001f275b9eed6527517741
SHA-256: df5b64663e21d410fb96375d6a4713e778dba7ecf62da1c64616bb0383bf83e2
 
Red Hat Enterprise Linux ES (v. 4.8.z)

SRPMS:
nss_ldap-253-7.el4_8.3.src.rpm
File outdated by:  RHBA-2011:0239
    MD5: ad2f24bbe8380fd5cf2112d74d188587
SHA-256: 747d8e1d373d5b3f02af9685e47295759578dcbb1923b5d0030d4bacf64c65b4
 
IA-32:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2010:0630
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
 
IA-64:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2010:0630
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
nss_ldap-253-7.el4_8.3.ia64.rpm
File outdated by:  RHBA-2010:0630
    MD5: 822b7369ce66c51237dd5518a9e2f572
SHA-256: 9ede78328a5bf2b2d72bf90856eb890163887340ae8fb378f360380bfc74660a
 
x86_64:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2010:0630
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
nss_ldap-253-7.el4_8.3.x86_64.rpm
File outdated by:  RHBA-2010:0630
    MD5: 6176154253001f275b9eed6527517741
SHA-256: df5b64663e21d410fb96375d6a4713e778dba7ecf62da1c64616bb0383bf83e2
 
Red Hat Enterprise Linux WS (v. 4)

SRPMS:
nss_ldap-253-7.el4_8.3.src.rpm
File outdated by:  RHBA-2011:0239
    MD5: ad2f24bbe8380fd5cf2112d74d188587
SHA-256: 747d8e1d373d5b3f02af9685e47295759578dcbb1923b5d0030d4bacf64c65b4
 
IA-32:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2011:0239
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
 
IA-64:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2011:0239
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
nss_ldap-253-7.el4_8.3.ia64.rpm
File outdated by:  RHBA-2011:0239
    MD5: 822b7369ce66c51237dd5518a9e2f572
SHA-256: 9ede78328a5bf2b2d72bf90856eb890163887340ae8fb378f360380bfc74660a
 
x86_64:
nss_ldap-253-7.el4_8.3.i386.rpm
File outdated by:  RHBA-2011:0239
    MD5: a565ceca29a476c3c5df9281bb21107b
SHA-256: b2f8240d84f33484cc6d319e629e473e003e82588ee82a85e463353de53ad29e
nss_ldap-253-7.el4_8.3.x86_64.rpm
File outdated by:  RHBA-2011:0239
    MD5: 6176154253001f275b9eed6527517741
SHA-256: df5b64663e21d410fb96375d6a4713e778dba7ecf62da1c64616bb0383bf83e2
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

584499 - nscd with nss_ldap leaks file descriptors
584502 - nss_ldap bug causes nscd to crash with `ldap_result: Assertion `ld != ((void *)0)' failed.'
602964 - nss_ldap client does not seem to get a response from ldap server
602966 - gethostbyname2 queried with AF_INET6 (IPv6) return ok with IPv4 address



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/