UbuntuUpdates.org

Package "python-ldb-dbg"

Name: python-ldb-dbg

Description:

Python bindings for LDB - debug extension

Latest version: 2:1.1.24-1ubuntu3.2
Release: xenial (16.04)
Level: security
Repository: main
Head package: ldb
Homepage: http://ldb.samba.org/

Links


Download "python-ldb-dbg"


Other versions of "python-ldb-dbg" in Xenial

Repository Area Version
base main 2:1.1.24-1ubuntu3
updates main 2:1.1.24-1ubuntu3.2

Changelog

Version: 2:1.1.24-1ubuntu3.2 2021-03-24 19:06:16 UTC

  ldb (2:1.1.24-1ubuntu3.2) xenial-security; urgency=medium

  * SECURITY UPDATE: Heap corruption via crafted DN strings
    - debian/patches/CVE-2020-27840.patch: avoid head corruption in
      ldb_dn_explode in common/ldb_dn.c.
    - CVE-2020-27840
  * SECURITY UPDATE: Out of bounds read in AD DC LDAP server
    - debian/patches/CVE-2021-20277.patch: stay in bounds in
      common/attrib_handlers.c.
    - CVE-2021-20277

 -- Marc Deslauriers <email address hidden> Wed, 24 Mar 2021 08:04:37 -0400

Source diff to previous version
CVE-2020-27840 Heap corruption via crafted DN strings
CVE-2021-20277 Out of bounds read in AD DC LDAP server

Version: 2:1.1.24-1ubuntu3.1 2019-02-26 15:07:24 UTC

  ldb (2:1.1.24-1ubuntu3.1) xenial-security; urgency=medium

  * SECURITY UPDATE: Out of bound read in ldb_wildcard_compare
    - debian/patches/CVE-2019-3824-1.patch: fix length.
    - debian/patches/CVE-2019-3824-2.patch: add extra comments.
    - debian/patches/CVE-2019-3824-3.patch: improve code style.
    - debian/patches/CVE-2019-3824-4.patch: use talloc_zero.
    - debian/patches/CVE-2019-3824-5.patch: check tree operation.
    - debian/patches/CVE-2019-3824-6.patch: fix end of data check.
    - CVE-2019-3824

 -- Marc Deslauriers <email address hidden> Mon, 25 Feb 2019 08:18:19 -0500

CVE-2019-3824 Out of bound read in ldb_wildcard_compare



About   -   Send Feedback to @ubuntu_updates