aboutsummaryrefslogtreecommitdiff
path: root/package/openldap/openldap.hash
diff options
context:
space:
mode:
authorGravatar Francois Perrad <fperrad@gmail.com>2020-12-22 18:11:49 +0100
committerGravatar Peter Korsgaard <peter@korsgaard.com>2020-12-24 12:48:52 +0100
commit7345f5bdf9bd75866a4f609eef52115c2a5957a9 (patch)
tree64a0ae79e1a523a70838e239ed4af286526e7769 /package/openldap/openldap.hash
parent3d13c2d099007bcbd32f0f6a9dc1a17921c069b9 (diff)
downloadbuildroot-7345f5bdf9bd75866a4f609eef52115c2a5957a9.tar.gz
buildroot-7345f5bdf9bd75866a4f609eef52115c2a5957a9.tar.bz2
package/openldap: security bump to version 2.4.56
Fixes the following security issue: - CVE-2020-25692: A NULL pointer dereference was found in OpenLDAP server and was fixed in openldap 2.4.55, during a request for renaming RDNs. An unauthenticated attacker could remotely crash the slapd process by sending a specially crafted request, causing a Denial of Service. - CVE-2020-25709: Assertion failure in CSN normalization with invalid input - CVE-2020-25710: Assertion failure in CSN normalization with invalid input Signed-off-by: Francois Perrad <francois.perrad@gadz.org> [Peter: add CVE info] Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 09a565d9408f47e219972b0a71f3cbe0d801225c) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Diffstat (limited to 'package/openldap/openldap.hash')
-rw-r--r--package/openldap/openldap.hash10
1 files changed, 5 insertions, 5 deletions
diff --git a/package/openldap/openldap.hash b/package/openldap/openldap.hash
index 6790e8b7aa..4908f6e69e 100644
--- a/package/openldap/openldap.hash
+++ b/package/openldap/openldap.hash
@@ -1,7 +1,7 @@
-# From https://www.openldap.org/software/download/OpenLDAP/openldap-release/openldap-2.4.50.md5
-md5 f9ed44ef373abed04c9e4c8586260f9e openldap-2.4.50.tgz
-# From https://www.openldap.org/software/download/OpenLDAP/openldap-release/openldap-2.4.50.sha1
-sha1 82f576e0d0d334e9e798d9de8936683546247bb9 openldap-2.4.50.tgz
+# From https://www.openldap.org/software/download/OpenLDAP/openldap-release/openldap-2.4.56.md5
+md5 82a7dcf7aeaf95fdad16017c0ed9983a openldap-2.4.56.tgz
+# From https://www.openldap.org/software/download/OpenLDAP/openldap-release/openldap-2.4.56.sha1
+sha1 4c617b87bd50ef8d071e7deb7525af79b08d4910 openldap-2.4.56.tgz
# Locally computed
-sha256 5cb57d958bf5c55a678c6a0f06821e0e5504d5a92e6a33240841fbca1db586b8 openldap-2.4.50.tgz
+sha256 25520e0363c93f3bcb89802a4aa3db33046206039436e0c7c9262db5a61115e0 openldap-2.4.56.tgz
sha256 310fe25c858a9515fc8c8d7d1f24a67c9496f84a91e0a0e41ea9975b1371e569 LICENSE