update: openldap #1120

dongsupark · 2023-07-17T10:09:38Z

Name: openldap
CVEs: CVE-2023-2953
CVSSs: 7.5
Action Needed: update to >= 2.5.14 or 2.6.4-r1

Summary: A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.

refmap.gentoo: https://bugs.gentoo.org/907933

dongsupark · 2023-07-20T08:54:06Z

A manual update is necessary, because openldap is not touched by weekly updates.
Will soon start working on it.

dongsupark added security security concerns advisory security advisory cvss/HIGH > 7 && < 9 assessed CVSS labels Jul 17, 2023

dongsupark added this to Flatcar tactical, release planning, and roadmap Jul 17, 2023

github-project-automation bot moved this to 📝 Needs Triage in Flatcar tactical, release planning, and roadmap Jul 17, 2023

dongsupark moved this from 📝 Needs Triage to 🌱 Upcoming / Focus in Flatcar tactical, release planning, and roadmap Jul 17, 2023

dongsupark self-assigned this Jul 20, 2023

dongsupark mentioned this issue Jul 20, 2023

net-nds/openldap: update to 2.5.14 flatcar/scripts#999

Merged

1 task

dongsupark closed this as completed in flatcar/scripts#999 Jul 24, 2023

github-project-automation bot moved this from 🌱 Upcoming / Focus to Implemented in Flatcar tactical, release planning, and roadmap Jul 24, 2023

github-actions bot mentioned this issue Nov 10, 2023

Monthly contributions report 2023-07-22 - 2023-08-21 #1246

Closed

dongsupark removed this from Flatcar tactical, release planning, and roadmap Nov 28, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

update: openldap #1120

update: openldap #1120

dongsupark commented Jul 17, 2023 •

edited

Loading

dongsupark commented Jul 20, 2023

update: openldap #1120

update: openldap #1120

Comments

dongsupark commented Jul 17, 2023 • edited Loading

dongsupark commented Jul 20, 2023

dongsupark commented Jul 17, 2023 •

edited

Loading