Skip to navigation

Bug Fix Advisory nss_ldap bug fix update

Advisory: RHBA-2011:1413-1
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2011-10-31
Last updated on: 2011-10-31
Affected Products: Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)

Details

An updated nss_ldap package that fixes one bug is now available for Red Hat
Enterprise Linux 5.

The nss_ldap package contains the nss_ldap and pam_ldap modules. The nss_ldap
module is a plug-in which allows applications to retrieve information about
users and groups from a directory server. The pam_ldap module allows a directory
server to be used by PAM-aware applications to verify user passwords.

This update fixes the following bug:

* Previously, a fixed size buffer to store the LDAP configuration could exceed
its size. As a consequence, nss_ldap failed when it was used with certain large
configurations, especially on 64-bit architectures where pointers in internal
data structures occupy twice as much space in the buffer as on 32-bit
architectures. This caused situations where a certain LDAP configuration worked
on 32-bit architecture but not on 64-bit architecture. With this update, the
size of the buffer has been increased to 64 KB, and nss_ldap now works correctly
with LDAP configurations that do not exceed the size of 64 KB. (BZ#743193)

All users of nss_ldap are advised to upgrade to this updated package, which
fixes this bug.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

Updated packages

Red Hat Enterprise Linux (v. 5 server)

SRPMS:
nss_ldap-253-42.el5_7.4.src.rpm
File outdated by:  RHBA-2013:0251
    MD5: 5eb2475a90a33cf5fa31a2720b0e3267
SHA-256: ad98d852560455795069c6e04dbc0a767508876389d86539f45ba240d9a91c60
 
IA-32:
nss_ldap-253-42.el5_7.4.i386.rpm
File outdated by:  RHBA-2013:0251
    MD5: 1114855063e526238f307c2cc5a84f2d
SHA-256: 3f63c73e1cf1f33bfbde925a6359d814facdfdf23f77f281acfb4ddb520341b5
 
IA-64:
nss_ldap-253-42.el5_7.4.i386.rpm
File outdated by:  RHBA-2013:0251
    MD5: 1114855063e526238f307c2cc5a84f2d
SHA-256: 3f63c73e1cf1f33bfbde925a6359d814facdfdf23f77f281acfb4ddb520341b5
nss_ldap-253-42.el5_7.4.ia64.rpm
File outdated by:  RHBA-2013:0251
    MD5: f5db9c8855d654d7741b0e9f11d1b838
SHA-256: b714b497a29e04f95c45956ce9dc6337c977c6fa31dd8fc83d37e8d1442dfeb8
 
PPC:
nss_ldap-253-42.el5_7.4.ppc.rpm
File outdated by:  RHBA-2013:0251
    MD5: 4e66ce67f5987a6785ebc9611fc995d3
SHA-256: 2a93950f233dc3d62062ebc5dc97465ffa6e7bdaf42a2c02e9ef15fecb7ce819
nss_ldap-253-42.el5_7.4.ppc64.rpm
File outdated by:  RHBA-2013:0251
    MD5: e6c7bb415a681d896d796e4fb38391dd
SHA-256: fca3cf6c2a34dbd47bdf201a1c9981015418a8ac3ab6b4ac24ae25166736a4f7
 
s390x:
nss_ldap-253-42.el5_7.4.s390.rpm
File outdated by:  RHBA-2013:0251
    MD5: deed1e1765f54a30867d435ca091e1a7
SHA-256: 6fa788f7acb43427d391231dce2f89af787fa8167d4c0781e7b7468ecf09fa0d
nss_ldap-253-42.el5_7.4.s390x.rpm
File outdated by:  RHBA-2013:0251
    MD5: d8809a4dae5d073d23a798ce071ef37b
SHA-256: 9177e3e8ef53def20ca9b9087d8fc4432d197d0228731bbd6c7b974a38bd7f49
 
x86_64:
nss_ldap-253-42.el5_7.4.i386.rpm
File outdated by:  RHBA-2013:0251
    MD5: 1114855063e526238f307c2cc5a84f2d
SHA-256: 3f63c73e1cf1f33bfbde925a6359d814facdfdf23f77f281acfb4ddb520341b5
nss_ldap-253-42.el5_7.4.x86_64.rpm
File outdated by:  RHBA-2013:0251
    MD5: 598694bf6a35fb959716b6aca9bd0bbc
SHA-256: e68385502205a6df9ab245aee2288356091d99a45e5c161323c321f3590d483e
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
nss_ldap-253-42.el5_7.4.src.rpm
File outdated by:  RHBA-2013:0251
    MD5: 5eb2475a90a33cf5fa31a2720b0e3267
SHA-256: ad98d852560455795069c6e04dbc0a767508876389d86539f45ba240d9a91c60
 
IA-32:
nss_ldap-253-42.el5_7.4.i386.rpm
File outdated by:  RHBA-2013:0251
    MD5: 1114855063e526238f307c2cc5a84f2d
SHA-256: 3f63c73e1cf1f33bfbde925a6359d814facdfdf23f77f281acfb4ddb520341b5
 
x86_64:
nss_ldap-253-42.el5_7.4.i386.rpm
File outdated by:  RHBA-2013:0251
    MD5: 1114855063e526238f307c2cc5a84f2d
SHA-256: 3f63c73e1cf1f33bfbde925a6359d814facdfdf23f77f281acfb4ddb520341b5
nss_ldap-253-42.el5_7.4.x86_64.rpm
File outdated by:  RHBA-2013:0251
    MD5: 598694bf6a35fb959716b6aca9bd0bbc
SHA-256: e68385502205a6df9ab245aee2288356091d99a45e5c161323c321f3590d483e
 
(The unlinked packages above are only available from the Red Hat Network)


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/