You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa openldap

Sigurnosni nedostatak programskog paketa openldap

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2017-02-02 16:35:20.084331

Name : openldap
Product : Fedora 25
Version : 2.4.44
Release : 7.fc25
Summary : LDAP support libraries
Description :
OpenLDAP is an open source suite of LDAP (Lightweight Directory Access
Protocol) applications and development tools. LDAP is a set of
protocols for accessing directory services (usually phone book style
information, but other information is possible) over the Internet,
similar to the way DNS (Domain Name System) information is propagated
over the Internet. The openldap package contains configuration files,
libraries, and documentation for OpenLDAP.

Update Information:

This update should make OpenLDAP up to date with latest NSS, notably: – fix
olcTLSProtocolMin handling – fix TLS_CIPHER_SUITE parsing – update a list of
ciphers to fit latest NSS development – make use of NSS global settings for
`DEFAULTS’ TLS_CIPHER_SUITE keyword Additionaly, slapd should start correctly
after network is online, now.

[ 1 ] Bug #1375432 – Setting olcTLSProtocolMin does not change supported protocols
[ 2 ] Bug #1243517 – CVE-2015-3276 openldap: incorrect multi-keyword mode cipherstring parsing [fedora-all]
[ 3 ] Bug #1387868 – openldap server doesn’t support any strong cipher suites
[ 4 ] Bug #1336487 – slapd should start after network-online.service

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade openldap’ at the command line.
For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list —
To unsubscribe send an email to

AutorTomislav Protega
Cert idNCERT-REF-2017-02-0027-ADV
More in Preporuke
Sigurnosni nedostaci programskog paketa wavpack

Otkriveni su sigurnosni nedostaci u programskom paketu wavpack za operacijski sustav Fedora. Otkriveni nedostaci posljedica su prekoračenja spremnika gomile, a...