[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: SuSE Security Announcement

To: Jeff Costlow <j.costlow@f5.com>
Subject: Re: SuSE Security Announcement
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Mon, 30 Dec 2002 09:32:36 -0800
Cc: "'openldap-software@openldap.org'" <openldap-software@OpenLDAP.org>
In-reply-to: <A9601C3D40FBD3119E8000508BA55436034F76C5@f5-exchange1>

At 10:01 AM 12/27/2002, Jeff Costlow wrote:
>Regarding SuSE's announcement of a few weeks ago:
>http://www.suse.com/de/security/2002_047_openldap2.html
>
>I've found Ralf Haferkamp's bug list here:
>http://www.openldap.org/its/index.cgi/Software%20Bugs?expression=rhafer@suse.de;statetype=-1
>Are these all the bugs that announcement covered or are there others?  I've searched SuSE's site, and not found anything more than the announcement.
>This thread:
>http://www.openldap.org/lists/openldap-devel/200212/msg00058.html
>indicates that all the bugs are old, and fixed in various places.
>
>Can the OpenLDAP project comment on when an official release might be made or on the severity of these bugs?

My comment "there may not actually be anything new here"
seems appropriate.  That is, this announcement appears
to be report SuSE-specific back-porting of fixes already
applied to OpenLDAP released software.

Kurt

References:
- SuSE Security Announcement
  - From: Jeff Costlow <j.costlow@f5.com>

Prev by Date: Re: why i can not start slapd?
Next by Date: Re: Howto fix LDAP Nullbind vulnerability (part II)
Index(es):
- Chronological
- Thread