LTS update for openldap?
Markus Koschany
apo at debian.org
Wed Aug 14 21:13:06 BST 2019
Hello Ryan,
Am 14.08.19 um 21:36 schrieb Ryan Tandy:
> Dear LTS team,
>
> I propose updating openldap in jessie to fix two no-DSA CVEs and one
> additional important bug. The same changes have been accepted for the
> next point releases of buster (#934507) and stretch (#934508).
>
> The issues all affect specific, mostly uncommon, slapd configurations,
> which is why they were considered not urgent enough for a DSA.
>
> I have built and tested the package in a jessie chroot. If you would
> like to verify the fixes yourselves, I can provide testing instructions
> and scripts for the individual issues.
>
> If you agree with the changes, I would appreciate if someone would
> handle the LTS paperwork for me, and sponsor the upload (if needed -- I
> am a DM).
Thank you for preparing an update for openldap in Jessie. I will take
care of all necessary paper work and upload the package for you. Can you
send some instructions to the list how I can verify the patches?
[...]
> Also, could you please add openldap to the lts-do-call-me list?
Done.
Regards,
Markus
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 963 bytes
Desc: OpenPGP digital signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-openldap-devel/attachments/20190814/48bc23a9/attachment.sig>
More information about the Pkg-openldap-devel
mailing list