Bug#682583: pu: package nss-pam-ldapd/0.7.15+squeeze2

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#682583: pu: package nss-pam-ldapd/0.7.15+squeeze2
From: Arthur de Jong <adejong@debian.org>
Date: Mon, 23 Jul 2012 23:50:15 +0200
Message-id: <1343080215.7764.32.camel@sorbet.thuis.net>
Reply-to: Arthur de Jong <adejong@debian.org>, 682583@bugs.debian.org

Package: release.debian.org
Severity: normal
User: release.debian.org@packages.debian.org
Usertags: pu

Dear stable release team,

I would like to upload a new release of nss-pam-ldapd for squeeze that
fixes a few bugs. The fixes below (apart from the first one) should all
be very straightforward.

(1) extra checking of overflows of numeric values retrieved from LDAP
    This change was developed and tested by Redhat and has been in
    upstream releases 0.7.16 and 0.8.4 (and is also present in the
    version currently in testing).
    The diff in 0.7.16 which should apply without issues to 0.7.15:
    http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1600&view=revision
    svn diff -c 1600 http://arthurdejong.org/svn/nss-pam-ldapd

(2) fix gecos buffer length and make some other buffers have a
    consistent size (this is #640781)
    This change was in 0.8.5 and is scheduled for a next 0.7 upstream
    release. The bug reporter requested this change to go in a squeeze
    point release.
    The diff:
    http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1727&view=revision
    svn diff -c 1727 http://arthurdejong.org/svn/nss-pam-ldapd

(3) fix two possible NULL pointer dereferences (not very common
    scenario)
    These changes were in 0.8.5 and are scheduled for a next 0.7
    upstream release.
    The diffs:
    http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1728&view=revision
    http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1730&view=revision
    svn diff -c 1728 http://arthurdejong.org/svn/nss-pam-ldapd
    svn diff -c 1730 http://arthurdejong.org/svn/nss-pam-ldapd

(4) increase buffer size for pam_authz_search and ensure log message
    isn't cut short (this is Ubuntu bug #951343)
    These changes were in 0.7.16 and 0.8.7.
    The diffs:
    http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1629&view=revision
    http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1648&view=revision
    svn diff -c 1629 http://arthurdejong.org/svn/nss-pam-ldapd
    svn diff -c 1648 http://arthurdejong.org/svn/nss-pam-ldapd

Do you think any of the above are acceptable or unacceptable for a point
release. If you like I can provide more background information or
prepare a debdiff.

Thanks,

-- 
-- arthur - adejong@debian.org - http://people.debian.org/~adejong --

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

Prev by Date: Bug#682579: marked as done (unblock: mono-tools/2.10-6)
Next by Date: Re: Please unblock schroot 1.6.2-1
Previous by thread: Bug#682579: marked as done (unblock: mono-tools/2.10-6)
Next by thread: Bug#682603: unblock: linkchecker/7.9-2.1
Index(es):
- Date
- Thread