[ubuntu/oneiric] openldap 2.4.25-1ubuntu1 (Accepted)
Chuck Short
zulcss at ubuntu.com
Tue May 17 14:50:32 UTC 2011
openldap (2.4.25-1ubuntu1) oneiric; urgency=low
* Merge from debian unstable. Remaining changes:
- Install a default DIT (LP: #442498).
- Document cn=config in README file (LP: #370784).
- remaining changes:
+ AppArmor support:
- debian/apparmor-profile: add AppArmor profile
- use dh_apparmor:
- debian/rules: use dh_apparmor
- debian/control: Build-Depends on debhelper 7.4.20ubuntu5
- updated debian/slapd.README.Debian for note on AppArmor
- debian/slapd.dirs: add etc/apparmor.d/force-complain
+ Enable GSSAPI support (LP: #495418):
- debian/patches/gssapi.diff, thanks to Jerry Carter (Likewise):
- Add --with-gssapi support
- Make guess_service_principal() more robust when determining
principal
- debian/patches/series: apply gssapi.diff patch.
- debian/configure.options: Configure with --with-gssapi
- debian/control: Added libkrb5-dev as a build depend
+ debian/rules: Enable -DLDAP_CONNECTIONLESS to build CLDAP (UDP) support
in the openldap library, as required by Likewise-Open (LP: #390579)
+ Don't build smbk5pwd overlay since it uses heimdal instead of krb5:
- debian/control:
- remove build-dependency on heimdal-dev.
- remove slapd-smbk5pwd binary package.
- debian/rules: don't build smbk5pwd slapd module.
+ debian/{control,rules}: enable PIE hardening
+ ufw support (LP: #423246):
- debian/control: suggest ufw.
- debian/rules: install ufw profile.
- debian/slapd.ufw.profile: add ufw profile.
+ Enable nssoverlay:
- debian/patches/nssov-build, debian/series, debian/rules:
Apply, build and package the nss overlay.
- debian/schema/extra/misc.ldif: add ldif file for the misc schema
which defines rfc822MailMember (required by the nss overlay).
+ debian/rules, debian/schema/extra/:
Fix configure rule to supports extra schemas shipped as part
of the debian/schema/ directory.
+ debian/rules, debian/slapd.py: Add apport hook. (LP: #610544)
+ debian/slapd.init.ldif: don't set olcRootDN since it's not defined in
neither the default DIT nor via an Authn mapping.
+ debian/slapd.scripts-common: adjust minimum version that triggers a
database upgrade. Upgrade from maverick shouldn't trigger database
upgrade (which would happen with the version used in Debian).
+ debian/slapd.scripts-common: add slapcat_opts to local variables.
Remove unused variable new_conf.
+ debian/slapd.script-common: Fix package reconfiguration.
- Fix backup directory naming for multiple reconfiguration.
+ debian/slapd.default, debian/slapd.README.Debian:
use the new configuration style.
+ Install nss overlay (LP: #675391):
- debian/rules: run install target for nssov module.
- debian/patches/nssov-build: fix patch to install schema in /etc/ldap/schema
+ debian/patches/gssapi.diff:
- Update patch so that likewise-open is usuable again. (LP: #661547)
+ debian/patches/service-operational-before-detach: New patch replacing old one
of the same name as previous could cause database corruption based on upstream commits.
(LP: #727973)
+ Dropped:
- debian/patches/gold: Use the debian version instead
- debian/patches/CVE-2011-1024: Fixed upstream
- debian/patches/CVE-2011-1025: Fixed upstream
- debian/patches/CVE-2011-1081: Fixed upstream
openldap (2.4.25-1) unstable; urgency=low
* New upstream version (Closes: #617606, #618904, #606815, #608813)
- Fixes CVE-2011-1024, CVE-2011-1025, CVE-2011-1081
- slapd server process frequently hangs during everyday usage is fixed in
newer versions of openldap according to the bug submitter
* Refresh all patches
* Remove manpage-tlscyphersuite-additions, applied upstream
* Remove issue-6534-patch, applied upstream
* Add Slovak translation, thanks Slavko <linux at slavino.sk> (Closes: #608699)
* Add debian specific patch for ldap.conf. Add TLS_CACERT option and set it
by default to /etc/ssl/certs/ca-certificates.crt (Closes: #555409, #616703)
* Add patch to fix a FTBFS with binutils-gold (Closes: #555867)
* Add slapschema, just hardlink it (Closes: #601569)
* Update patch service-operational-before-detach (Closes: #616164, #598361)
* Add ldif_* symbols to libldap-2.4-2
* Add upstream patch for a locking issue in libldap_r
* Fix build failure, use @SHELL@ instead of hardcoded /bin/sh (build/top.mk)
(Closes: #621925)
openldap (2.4.23-7) unstable; urgency=low
* Updated vietnamese translation, thanks Clytie Siddall
(Closes: #601537, #598575)
* Updated portuguese translation, thanks Traduz (Closes: #599760)
* Updated danish translation, thanks Joe Dalton (Closes: #599835)
Date: Sun, 08 May 2011 16:34:09 +0100
Changed-By: Chuck Short <zulcss at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Chuck Short <chuck.short at canonical.com>
https://launchpad.net/ubuntu/oneiric/+source/openldap/2.4.25-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Sun, 08 May 2011 16:34:09 +0100
Source: openldap
Binary: slapd ldap-utils libldap-2.4-2 libldap-2.4-2-dbg libldap2-dev slapd-dbg
Architecture: source
Version: 2.4.25-1ubuntu1
Distribution: oneiric
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Chuck Short <zulcss at ubuntu.com>
Description:
ldap-utils - OpenLDAP utilities
libldap-2.4-2 - OpenLDAP libraries
libldap-2.4-2-dbg - Debugging information for OpenLDAP libraries
libldap2-dev - OpenLDAP development libraries
slapd - OpenLDAP server (slapd)
slapd-dbg - Debugging information for the OpenLDAP server (slapd)
Closes: 555409 555867 598361 598575 599760 599835 601537 601569 606815 608699 608813 616164 616703 617606 618904 621925
Launchpad-Bugs-Fixed: 370784 390579 423246 442498 495418 610544 661547 675391 727973
Changes:
openldap (2.4.25-1ubuntu1) oneiric; urgency=low
.
* Merge from debian unstable. Remaining changes:
- Install a default DIT (LP: #442498).
- Document cn=config in README file (LP: #370784).
- remaining changes:
+ AppArmor support:
- debian/apparmor-profile: add AppArmor profile
- use dh_apparmor:
- debian/rules: use dh_apparmor
- debian/control: Build-Depends on debhelper 7.4.20ubuntu5
- updated debian/slapd.README.Debian for note on AppArmor
- debian/slapd.dirs: add etc/apparmor.d/force-complain
+ Enable GSSAPI support (LP: #495418):
- debian/patches/gssapi.diff, thanks to Jerry Carter (Likewise):
- Add --with-gssapi support
- Make guess_service_principal() more robust when determining
principal
- debian/patches/series: apply gssapi.diff patch.
- debian/configure.options: Configure with --with-gssapi
- debian/control: Added libkrb5-dev as a build depend
+ debian/rules: Enable -DLDAP_CONNECTIONLESS to build CLDAP (UDP) support
in the openldap library, as required by Likewise-Open (LP: #390579)
+ Don't build smbk5pwd overlay since it uses heimdal instead of krb5:
- debian/control:
- remove build-dependency on heimdal-dev.
- remove slapd-smbk5pwd binary package.
- debian/rules: don't build smbk5pwd slapd module.
+ debian/{control,rules}: enable PIE hardening
+ ufw support (LP: #423246):
- debian/control: suggest ufw.
- debian/rules: install ufw profile.
- debian/slapd.ufw.profile: add ufw profile.
+ Enable nssoverlay:
- debian/patches/nssov-build, debian/series, debian/rules:
Apply, build and package the nss overlay.
- debian/schema/extra/misc.ldif: add ldif file for the misc schema
which defines rfc822MailMember (required by the nss overlay).
+ debian/rules, debian/schema/extra/:
Fix configure rule to supports extra schemas shipped as part
of the debian/schema/ directory.
+ debian/rules, debian/slapd.py: Add apport hook. (LP: #610544)
+ debian/slapd.init.ldif: don't set olcRootDN since it's not defined in
neither the default DIT nor via an Authn mapping.
+ debian/slapd.scripts-common: adjust minimum version that triggers a
database upgrade. Upgrade from maverick shouldn't trigger database
upgrade (which would happen with the version used in Debian).
+ debian/slapd.scripts-common: add slapcat_opts to local variables.
Remove unused variable new_conf.
+ debian/slapd.script-common: Fix package reconfiguration.
- Fix backup directory naming for multiple reconfiguration.
+ debian/slapd.default, debian/slapd.README.Debian:
use the new configuration style.
+ Install nss overlay (LP: #675391):
- debian/rules: run install target for nssov module.
- debian/patches/nssov-build: fix patch to install schema in /etc/ldap/schema
+ debian/patches/gssapi.diff:
- Update patch so that likewise-open is usuable again. (LP: #661547)
+ debian/patches/service-operational-before-detach: New patch replacing old one
of the same name as previous could cause database corruption based on upstream commits.
(LP: #727973)
+ Dropped:
- debian/patches/gold: Use the debian version instead
- debian/patches/CVE-2011-1024: Fixed upstream
- debian/patches/CVE-2011-1025: Fixed upstream
- debian/patches/CVE-2011-1081: Fixed upstream
.
openldap (2.4.25-1) unstable; urgency=low
.
* New upstream version (Closes: #617606, #618904, #606815, #608813)
- Fixes CVE-2011-1024, CVE-2011-1025, CVE-2011-1081
- slapd server process frequently hangs during everyday usage is fixed in
newer versions of openldap according to the bug submitter
* Refresh all patches
* Remove manpage-tlscyphersuite-additions, applied upstream
* Remove issue-6534-patch, applied upstream
* Add Slovak translation, thanks Slavko <linux at slavino.sk> (Closes: #608699)
* Add debian specific patch for ldap.conf. Add TLS_CACERT option and set it
by default to /etc/ssl/certs/ca-certificates.crt (Closes: #555409, #616703)
* Add patch to fix a FTBFS with binutils-gold (Closes: #555867)
* Add slapschema, just hardlink it (Closes: #601569)
* Update patch service-operational-before-detach (Closes: #616164, #598361)
* Add ldif_* symbols to libldap-2.4-2
* Add upstream patch for a locking issue in libldap_r
* Fix build failure, use @SHELL@ instead of hardcoded /bin/sh (build/top.mk)
(Closes: #621925)
.
openldap (2.4.23-7) unstable; urgency=low
.
* Updated vietnamese translation, thanks Clytie Siddall
(Closes: #601537, #598575)
* Updated portuguese translation, thanks Traduz (Closes: #599760)
* Updated danish translation, thanks Joe Dalton (Closes: #599835)
Checksums-Sha1:
3cd7f70c9eab117173a5782813cd61040250fa4e 1981 openldap_2.4.25-1ubuntu1.dsc
7826c6f63a07617ba853d053e33c3775997d0f0f 4541300 openldap_2.4.25.orig.tar.gz
f414904a0cbc3a072f5d21ce1d918bc37b049eb9 171716 openldap_2.4.25-1ubuntu1.diff.gz
Checksums-Sha256:
a57506698ba96fe9e39940bcc1fd50892c4b6f02764a86e22af00f48da52d3b0 1981 openldap_2.4.25-1ubuntu1.dsc
a59a89768e6c63219a0da34cbbb6250a208b7d576e0b40a9a90b150de480ec0c 4541300 openldap_2.4.25.orig.tar.gz
5fbf0d072ce0941e54de526bb785d57e6357ffbfa8b29bd46a5b142aba19637a 171716 openldap_2.4.25-1ubuntu1.diff.gz
Files:
d7290e4454a7caec4ec5d1fc779442e3 1981 net optional openldap_2.4.25-1ubuntu1.dsc
0ecf35eeaf859d59b529b424c7275e6a 4541300 net optional openldap_2.4.25.orig.tar.gz
27d4d2ec130c2f542f107029f3aac0d9 171716 net optional openldap_2.4.25-1ubuntu1.diff.gz
Original-Maintainer: Debian OpenLDAP Maintainers <pkg-openldap-devel at lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
iEYEARECAAYFAk3Sce0ACgkQIHZ33voUATvLlACdHH4O9loZGQcHBuE2xfKtoYJ0
fB8AoLlwjEhV1G8OFVfKwGFtfr1tDmDL
=KWYK
-----END PGP SIGNATURE-----
More information about the Oneiric-changes
mailing list