Skip to content

[staging-20.09] openldap: add patch to fix unauthenticated nullptr dereference in slapd#102370

Merged
Mic92 merged 1 commit intoNixOS:staging-20.09from
mweinelt:20.09/openldap
Nov 1, 2020
Merged

[staging-20.09] openldap: add patch to fix unauthenticated nullptr dereference in slapd#102370
Mic92 merged 1 commit intoNixOS:staging-20.09from
mweinelt:20.09/openldap

Conversation

@mweinelt
Copy link
Member

@mweinelt mweinelt commented Nov 1, 2020
edited
Loading

Motivation for this change

Backport #102359

This vulnerability does not have a CVE yet.

https://security-tracker.debian.org/tracker/TEMP-0000000-DD4835
https://bugs.openldap.org/show_bug.cgi?id=9370

Things done
  • Tested using sandboxing (nix.useSandbox on NixOS, or option sandbox in nix.conf on non-NixOS linux)
  • Built on platform(s)
    • NixOS
    • macOS
    • other Linux distributions
  • Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
  • Tested compilation of all pkgs that depend on this change using nix-shell -p nixpkgs-review --run "nixpkgs-review wip"
  • Tested execution of all binary files (usually in ./result/bin/)
  • Determined the impact on package closure size (by running nix path-info -S before and after)
  • Ensured that relevant documentation is up to date
  • Fits CONTRIBUTING.md.

@mweinelt mweinelt added the 1.severity: security Issues which raise a security issue, or PRs that fix one label Nov 1, 2020
@ofborg ofborg bot added 10.rebuild-darwin: 101-500 This PR causes between 101 and 500 packages to rebuild on Darwin. 10.rebuild-linux: 501+ This PR causes many rebuilds on Linux and should normally target the staging branches. 10.rebuild-linux: 1001-2500 This PR causes many rebuilds on Linux and should target the staging branches. labels Nov 1, 2020
@Mic92 Mic92 merged commit 03a29f6 into NixOS:staging-20.09 Nov 1, 2020
@mweinelt mweinelt deleted the 20.09/openldap branch November 1, 2020 18:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

1.severity: security Issues which raise a security issue, or PRs that fix one 10.rebuild-darwin: 101-500 This PR causes between 101 and 500 packages to rebuild on Darwin. 10.rebuild-linux: 501+ This PR causes many rebuilds on Linux and should normally target the staging branches. 10.rebuild-linux: 1001-2500 This PR causes many rebuilds on Linux and should target the staging branches.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mweinelt @Mic92