[Pkg-openldap-devel] Bug#676309: Bug#676309: openldap: CVE-2012-2668 does not honor TLSCipherSuite settings
Steve Langasek
vorlon at debian.org
Wed Jun 6 06:24:32 UTC 2012
On Wed, Jun 06, 2012 at 08:01:38AM +0300, Henri Salo wrote:
> Package: openldap
> Version: 2.4.23-7.2
> Severity: important
> Tags: security
> https://bugzilla.redhat.com/show_bug.cgi?id=825875
> """
> It was reported that OpenLDAP, when using the Mozilla NSS backend, would
> ignore any TLSCipherSuite configuration settings. When the TLSCipherSuite
> setting is configured, OpenLDAP would use the default cipher suite,
> ignoring the setting.
OpenLDAP in Debian doesn't use the NSS backend, it uses GnuTLS. How does
this bug apply to Debian?
--
Steve Langasek Give me a lever long enough and a Free OS
Debian Developer to set it on, and I can move the world.
Ubuntu Developer http://www.debian.org/
slangasek at ubuntu.com vorlon at debian.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-openldap-devel/attachments/20120605/7a70bbdc/attachment.pgp>
More information about the Pkg-openldap-devel
mailing list