GNU bug report logs -
#46415
[PATCH] gnu: OpenLDAP: Update to 2.4.57 [security fixes].
Previous Next
Reported by: Leo Famulari <leo <at> famulari.name>
Date: Wed, 10 Feb 2021 00:07:01 UTC
Severity: normal
Tags: patch
Done: Leo Famulari <leo <at> famulari.name>
Bug is archived. No further changes may be made.
To add a comment to this bug, you must first unarchive it, by sending
a message to control AT debbugs.gnu.org, with unarchive 46415 in the body.
You can then email your comments to 46415 AT debbugs.gnu.org in the normal way.
Toggle the display of automated, internal messages from the tracker.
Report forwarded
to
guix-patches <at> gnu.org:
bug#46415; Package
guix-patches.
(Wed, 10 Feb 2021 00:07:02 GMT)
Full text and
rfc822 format available.
Acknowledgement sent
to
Leo Famulari <leo <at> famulari.name>:
New bug report received and forwarded. Copy sent to
guix-patches <at> gnu.org.
(Wed, 10 Feb 2021 00:07:02 GMT)
Full text and
rfc822 format available.
Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):
Fixes CVE-2020-{36221,36222,36223,36224,36225,36226,36226,36228,36229,36230}.
* gnu/packages/openldap.scm (openldap-2.4.57): New variable.
(openldap)[replacement]: New field.
---
gnu/packages/openldap.scm | 24 +++++++++++++++++++++++-
1 file changed, 23 insertions(+), 1 deletion(-)
diff --git a/gnu/packages/openldap.scm b/gnu/packages/openldap.scm
index fb917882e7..c23a9f6c25 100644
--- a/gnu/packages/openldap.scm
+++ b/gnu/packages/openldap.scm
@@ -1,7 +1,7 @@
;;; GNU Guix --- Functional package management for GNU
;;; Copyright © 2013, 2014, 2015, 2019, 2020 Ludovic Courtès <ludo <at> gnu.org>
;;; Copyright © 2013 Andreas Enge <andreas <at> enge.fr>
-;;; Copyright © 2016 Leo Famulari <leo <at> famulari.name>
+;;; Copyright © 2016, 2021 Leo Famulari <leo <at> famulari.name>
;;; Copyright © 2017, 2018, 2019 Ricardo Wurmus <rekado <at> elephly.net>
;;; Copyright © 2018 Tobias Geerinckx-Rice <me <at> tobias.gr>
;;; Copyright © 2019 Mathieu Othacehe <m.othacehe <at> gmail.com>
@@ -61,6 +61,7 @@
(define-public openldap
(package
(name "openldap")
+ (replacement openldap-2.4.57)
(version "2.4.50")
(source (origin
(method url-fetch)
@@ -125,6 +126,27 @@
(license openldap2.8)
(home-page "https://www.openldap.org/")))
+(define-public openldap-2.4.57
+ (package
+ (inherit openldap)
+ (version "2.4.57")
+ (source (origin
+ (method url-fetch)
+ ;; See <http://www.openldap.org/software/download/> for a list of
+ ;; mirrors.
+ (uri (list (string-append
+ "ftp://mirror.switch.ch/mirror/OpenLDAP/"
+ "openldap-release/openldap-" version ".tgz")
+ (string-append
+ "https://www.openldap.org/software/download/OpenLDAP/"
+ "openldap-release/openldap-" version ".tgz")
+ (string-append
+ "ftp://ftp.dti.ad.jp/pub/net/OpenLDAP/"
+ "openldap-release/openldap-" version ".tgz")))
+ (sha256
+ (base32
+ "0nmlyqhc52v24b4awh914sczmvxbazgq2cnlycvb9dgcwvhlgfn7"))))))
+
(define-public nss-pam-ldapd
(package
(name "nss-pam-ldapd")
--
2.30.0
Information forwarded
to
guix-patches <at> gnu.org:
bug#46415; Package
guix-patches.
(Thu, 11 Feb 2021 11:16:02 GMT)
Full text and
rfc822 format available.
Message #8 received at 46415 <at> debbugs.gnu.org (full text, mbox):
[Message part 1 (text/plain, inline)]
I assume you've tested it out? Looks good to me. I assume there's no way
to inherit the list of URLs from openldap to openldap/fixed and still
have it download the correct version.
--
Efraim Flashner <efraim <at> flashner.co.il> אפרים פלשנר
GPG key = A28B F40C 3E55 1372 662D 14F7 41AA E7DC CA3D 8351
Confidentiality cannot be guaranteed on emails sent or received unencrypted
[signature.asc (application/pgp-signature, inline)]
Information forwarded
to
guix-patches <at> gnu.org:
bug#46415; Package
guix-patches.
(Thu, 11 Feb 2021 19:20:02 GMT)
Full text and
rfc822 format available.
Message #11 received at 46415 <at> debbugs.gnu.org (full text, mbox):
[Message part 1 (text/plain, inline)]
On Thu, Feb 11, 2021 at 01:15:08PM +0200, Efraim Flashner wrote:
> I assume you've tested it out? Looks good to me. I assume there's no way
> to inherit the list of URLs from openldap to openldap/fixed and still
> have it download the correct version.
I tested that it builds but I don't have a way to test LDAP
functionality.
[signature.asc (application/pgp-signature, inline)]
Information forwarded
to
guix-patches <at> gnu.org:
bug#46415; Package
guix-patches.
(Thu, 11 Feb 2021 19:22:01 GMT)
Full text and
rfc822 format available.
Message #14 received at 46415 <at> debbugs.gnu.org (full text, mbox):
[Message part 1 (text/plain, inline)]
On Thu, Feb 11, 2021 at 02:18:57PM -0500, Leo Famulari wrote:
> On Thu, Feb 11, 2021 at 01:15:08PM +0200, Efraim Flashner wrote:
> > I assume you've tested it out? Looks good to me. I assume there's no way
> > to inherit the list of URLs from openldap to openldap/fixed and still
> > have it download the correct version.
>
> I tested that it builds but I don't have a way to test LDAP
> functionality.
I meant I assumed you tested it built and grafted correctly, as best as
we can tell.
--
Efraim Flashner <efraim <at> flashner.co.il> אפרים פלשנר
GPG key = A28B F40C 3E55 1372 662D 14F7 41AA E7DC CA3D 8351
Confidentiality cannot be guaranteed on emails sent or received unencrypted
[signature.asc (application/pgp-signature, inline)]
Reply sent
to
Leo Famulari <leo <at> famulari.name>:
You have taken responsibility.
(Thu, 11 Feb 2021 20:04:01 GMT)
Full text and
rfc822 format available.
Notification sent
to
Leo Famulari <leo <at> famulari.name>:
bug acknowledged by developer.
(Thu, 11 Feb 2021 20:04:01 GMT)
Full text and
rfc822 format available.
Message #19 received at 46415-done <at> debbugs.gnu.org (full text, mbox):
[Message part 1 (text/plain, inline)]
On Thu, Feb 11, 2021 at 09:21:14PM +0200, Efraim Flashner wrote:
> On Thu, Feb 11, 2021 at 02:18:57PM -0500, Leo Famulari wrote:
> > On Thu, Feb 11, 2021 at 01:15:08PM +0200, Efraim Flashner wrote:
> > > I assume you've tested it out? Looks good to me. I assume there's no way
> > > to inherit the list of URLs from openldap to openldap/fixed and still
> > > have it download the correct version.
> >
> > I tested that it builds but I don't have a way to test LDAP
> > functionality.
>
> I meant I assumed you tested it built and grafted correctly, as best as
> we can tell.
Yeah. Thanks for review! Pushed as a18492118cc73bee9a2e6424363e3e072572f52e
[signature.asc (application/pgp-signature, inline)]
bug archived.
Request was from
Debbugs Internal Request <help-debbugs <at> gnu.org>
to
internal_control <at> debbugs.gnu.org.
(Fri, 12 Mar 2021 12:24:04 GMT)
Full text and
rfc822 format available.
This bug report was last modified 3 years and 46 days ago.
Previous Next
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson.