Bug#682583: pu: package nss-pam-ldapd/0.7.15+squeeze2

To: Arthur de Jong <adejong@debian.org>, 682583@bugs.debian.org
Subject: Bug#682583: pu: package nss-pam-ldapd/0.7.15+squeeze2
From: Philipp Kern <pkern@debian.org>
Date: Fri, 7 Sep 2012 22:53:50 +0200
Message-id: <[🔎] 20120907205350.GA11188@spike.0x539.de>
Reply-to: Philipp Kern <pkern@debian.org>, 682583@bugs.debian.org
In-reply-to: <1343080215.7764.32.camel@sorbet.thuis.net>
References: <1343080215.7764.32.camel@sorbet.thuis.net>

Hi,

sorry for the late reply.

On Mon, Jul 23, 2012 at 11:50:15PM +0200, Arthur de Jong wrote:
> Package: release.debian.org
> Severity: normal
> User: release.debian.org@packages.debian.org
> Usertags: pu
> 
> Dear stable release team,
> 
> I would like to upload a new release of nss-pam-ldapd for squeeze that
> fixes a few bugs. The fixes below (apart from the first one) should all
> be very straightforward.
> 
> (1) extra checking of overflows of numeric values retrieved from LDAP
>     This change was developed and tested by Redhat and has been in
>     upstream releases 0.7.16 and 0.8.4 (and is also present in the
>     version currently in testing).
>     The diff in 0.7.16 which should apply without issues to 0.7.15:
>     http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1600&view=revision
>     svn diff -c 1600 http://arthurdejong.org/svn/nss-pam-ldapd

What's the consequence if we don't include this? I.e. what does this solve
exactly?

> (2) fix gecos buffer length and make some other buffers have a
>     consistent size (this is #640781)
>     This change was in 0.8.5 and is scheduled for a next 0.7 upstream
>     release. The bug reporter requested this change to go in a squeeze
>     point release.
>     The diff:
>     http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1727&view=revision
>     svn diff -c 1727 http://arthurdejong.org/svn/nss-pam-ldapd

ACK.

> (3) fix two possible NULL pointer dereferences (not very common
>     scenario)
>     These changes were in 0.8.5 and are scheduled for a next 0.7
>     upstream release.
>     The diffs:
>     http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1728&view=revision
>     http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1730&view=revision
>     svn diff -c 1728 http://arthurdejong.org/svn/nss-pam-ldapd

ACK.

>     svn diff -c 1730 http://arthurdejong.org/svn/nss-pam-ldapd

ACK.

> (4) increase buffer size for pam_authz_search and ensure log message
>     isn't cut short (this is Ubuntu bug #951343)
>     These changes were in 0.7.16 and 0.8.7.
>     The diffs:
>     http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1629&view=revision
>     http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1648&view=revision
>     svn diff -c 1629 http://arthurdejong.org/svn/nss-pam-ldapd

That seems gratious and is IMHO not suitable.

>     svn diff -c 1648 http://arthurdejong.org/svn/nss-pam-ldapd

ACK.

Kind regards
Philipp Kern

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Bug#682583: pu: package nss-pam-ldapd/0.7.15+squeeze2
  - From: Arthur de Jong <adejong@debian.org>

Prev by Date: Re: php5 stable release update
Next by Date: Bug#686978: unblock: perl/5.14.2-13
Previous by thread: Bug#682583: pu: package nss-pam-ldapd/0.7.15+squeeze2
Next by thread: Bug#682583: pu: package nss-pam-ldapd/0.7.15+squeeze2
Index(es):
- Date
- Thread