Description: "In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of service (daemon crash)." Patch: https://git.openldap.org/openldap/openldap/-/commit/98464c11df8247d6a11b52e294ba5dd4f0380440
@maintainer(s), please bump to 2.4.50.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=4bf2f1709bbb8b087c56a2e01ce735d0dac58c2b commit 4bf2f1709bbb8b087c56a2e01ce735d0dac58c2b Author: Robin H. Johnson <robbat2@gentoo.org> AuthorDate: 2020-05-02 23:12:26 +0000 Commit: Robin H. Johnson <robbat2@gentoo.org> CommitDate: 2020-05-02 23:12:26 +0000 net-nds/openldap: bump for security CVE-2020-12243 Also update mirrors to use HTTPS/HTTPS, because upstream's official download URL is a FTP site which seems to be broken. Bug: https://bugs.gentoo.org/641576 Bug: https://bugs.gentoo.org/719960 Signed-off-by: Robin H. Johnson <robbat2@gentoo.org> net-nds/openldap/Manifest | 1 + net-nds/openldap/openldap-2.4.50.ebuild | 907 ++++++++++++++++++++++++++++++++ 2 files changed, 908 insertions(+)
arches, please test and stabilize. FEATURES='test' USE='use -minimal' emerge =openldap-2.4.50
Unable to check for sanity: > disallowed package spec (only = allowed): net-nds/openldap
arm stable
amd64 stable
sparc stable
arm64 stable
hppa stable
s390 stable
x86 stable
ppc stable
ppc64 stable
GLSA vote: no.