Skip to navigation

Bug Fix Advisory bind-dyndb-ldap bug fix update

Advisory: RHBA-2011:1715-2
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2011-12-06
Last updated on: 2011-12-06
Affected Products: Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Workstation (v. 6)

Details

An updated bind-dyndb-ldap package that fixes several bugs is now available for
Red Hat Enterprise Linux 6.

The dynamic LDAP (Lightweight Directory Access Protocol) back end is a plug-in
for BIND that provides an LDAP database back-end capabilities. It features
support for dynamic updates and internal caching to lift the load off of the
LDAP server.

This update fixes the following bugs:

* Previously, the bind-dyndb-ldap plug-in could faile to honor the selected
authentication method because it did not call the ldap_bind() function on
reconnection. Consequently, the plug-in connected to the LDAP server
anonymously. With this update, the ldap_bind() function is executed on
reconnection and the plug-in uses the correct authentication method in the
described scenario. (BZ#742368)

* The bind-dyndb-ldap plug-in failed to load new zones from the LDAP server
runtime. This update adds the zone_refresh parameter to the plug-in which
controls how often the zone check is performed. (BZ#707255)

* The bind-dyndb-ldap plug-in could fail to connect to the LDAP server. This
happened when the LDAP server was using localhost and FreeIPA installation was
using a name different from the machine hostname. This update adds to the
plug-in the ldap_hostname option, which can be used to set the correct LDAP
server hostname. (BZ#745045)

* The "named" process could have remained unresponsive due to a race condition
in the bind-dyndb-ldap plug-in. With this update, the race condition has been
resolved and the problem no longer occurs. (BZ#727856)

All users of bind-dyndb-ldap are advised to upgrade to this updated package,
which fixes these bugs.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

Updated packages

Red Hat Enterprise Linux Server (v. 6)

SRPMS:
bind-dyndb-ldap-0.2.0-7.el6.src.rpm
File outdated by:  RHBA-2013:1636
    MD5: dbdf018420becd7ca6010b3299a27517
SHA-256: 3212cf6ffe436be71a63f5179704d987ea1dbd38deaf322cddd4d381c7ea577c
 
IA-32:
bind-dyndb-ldap-0.2.0-7.el6.i686.rpm
File outdated by:  RHBA-2013:1636
    MD5: 8912d5e97684a96ad30111c0573a52b7
SHA-256: fa05af4bcc2215f39a9ba9eed7a7bbd3ce3fe0d07192f5ff2c8d6442d77740fd
bind-dyndb-ldap-debuginfo-0.2.0-7.el6.i686.rpm
File outdated by:  RHBA-2013:1636
    MD5: 642c1a05308d4d6b67752f38abc756e0
SHA-256: 735d5124143fe6927e70afdb4302d927b621d5aac0abcd1a5f1ce213db3a7b02
 
PPC:
bind-dyndb-ldap-0.2.0-7.el6.ppc64.rpm
File outdated by:  RHBA-2013:1636
    MD5: 311d2996478bf770d6e424540f1a5136
SHA-256: eaa9e6efe3150ae624ee057520424b312ea1ac6817d245390c6406f8d585c311
bind-dyndb-ldap-debuginfo-0.2.0-7.el6.ppc64.rpm
File outdated by:  RHBA-2013:1636
    MD5: be431c228c359431399d939859bad342
SHA-256: a802776c85b66d95c001ea6ff757ff5ee54180f5eb0560a74bd87fcbefe32a3d
 
s390x:
bind-dyndb-ldap-0.2.0-7.el6.s390x.rpm
File outdated by:  RHBA-2013:1636
    MD5: 0ca9d4cfcffcfe49568e894f3c1e61f2
SHA-256: fb40f834c6154143ffc8da03b701a844da9031d5a5c47b11ca08b0376bcdbb7d
bind-dyndb-ldap-debuginfo-0.2.0-7.el6.s390x.rpm
File outdated by:  RHBA-2013:1636
    MD5: 817594f2f22e834972611c5762729357
SHA-256: 43e5a52e97de8318791930bac917bf5899c8c13f789c4a2b96fa5fe1fb7ef7ad
 
x86_64:
bind-dyndb-ldap-0.2.0-7.el6.x86_64.rpm
File outdated by:  RHBA-2013:1636
    MD5: 29ef5b941044918cb5233957cadea24f
SHA-256: 93926af4f94953fd67ebe6179e763f4f21f57a5a2180820193fb331b5d633b74
bind-dyndb-ldap-debuginfo-0.2.0-7.el6.x86_64.rpm
File outdated by:  RHBA-2013:1636
    MD5: dfb835954b77ac31e531d6546632369d
SHA-256: 174e8d1b753d0dc14270fcf3ac6374f0fa525af996f3c79b227a230cef631cf6
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
bind-dyndb-ldap-0.2.0-7.el6.src.rpm
File outdated by:  RHBA-2013:1636
    MD5: dbdf018420becd7ca6010b3299a27517
SHA-256: 3212cf6ffe436be71a63f5179704d987ea1dbd38deaf322cddd4d381c7ea577c
 
IA-32:
bind-dyndb-ldap-0.2.0-7.el6.i686.rpm
File outdated by:  RHBA-2013:1636
    MD5: 8912d5e97684a96ad30111c0573a52b7
SHA-256: fa05af4bcc2215f39a9ba9eed7a7bbd3ce3fe0d07192f5ff2c8d6442d77740fd
bind-dyndb-ldap-debuginfo-0.2.0-7.el6.i686.rpm
File outdated by:  RHBA-2013:1636
    MD5: 642c1a05308d4d6b67752f38abc756e0
SHA-256: 735d5124143fe6927e70afdb4302d927b621d5aac0abcd1a5f1ce213db3a7b02
 
x86_64:
bind-dyndb-ldap-0.2.0-7.el6.x86_64.rpm
File outdated by:  RHBA-2013:1636
    MD5: 29ef5b941044918cb5233957cadea24f
SHA-256: 93926af4f94953fd67ebe6179e763f4f21f57a5a2180820193fb331b5d633b74
bind-dyndb-ldap-debuginfo-0.2.0-7.el6.x86_64.rpm
File outdated by:  RHBA-2013:1636
    MD5: dfb835954b77ac31e531d6546632369d
SHA-256: 174e8d1b753d0dc14270fcf3ac6374f0fa525af996f3c79b227a230cef631cf6
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

667729 - Allow specifying query and transfer policy settings for a zone
707255 - Add support for loading new zones from LDAP
727856 - bind-dyndb-ldap: race condition in semaphore_wait() function
742368 - Sometimes the plugin reconnects anonymously to ldap


Keywords

bind, bind-dyndb-ldap, ldap, plugin


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/