[Buildroot] [PATCH] package/openldap: add upstream security fix for CVE-2021-27212

Peter Korsgaard peter at korsgaard.com
Tue Mar 9 23:00:39 UTC 2021


>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:

 > In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion
 > failure in slapd can occur in the issuerAndThisUpdateCheck function via a
 > crafted packet, resulting in a denial of service (daemon exit) via a short
 > timestamp.  This is related to schema_init.c and checkTime.

 > For more details, see the bugtracker:
 > https://bugs.openldap.org/show_bug.cgi?id=9454

 > Signed-off-by: Peter Korsgaard <peter at korsgaard.com>

Committed to 2020.02.x and 2020.11.x, thanks.

-- 
Bye, Peter Korsgaard


More information about the buildroot mailing list