Bug#682583: pu: package nss-pam-ldapd/0.7.15+squeeze2

Fri, 07 Sep 2012 13:57:18 -0700 

Hi,

sorry for the late reply.

On Mon, Jul 23, 2012 at 11:50:15PM +0200, Arthur de Jong wrote:
> Package: release.debian.org
> Severity: normal
> User: release.debian....@packages.debian.org
> Usertags: pu
> 
> Dear stable release team,
> 
> I would like to upload a new release of nss-pam-ldapd for squeeze that
> fixes a few bugs. The fixes below (apart from the first one) should all
> be very straightforward.
> 
> (1) extra checking of overflows of numeric values retrieved from LDAP
>     This change was developed and tested by Redhat and has been in
>     upstream releases 0.7.16 and 0.8.4 (and is also present in the
>     version currently in testing).
>     The diff in 0.7.16 which should apply without issues to 0.7.15:
>     http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1600&view=revision
>     svn diff -c 1600 http://arthurdejong.org/svn/nss-pam-ldapd

What's the consequence if we don't include this? I.e. what does this solve
exactly?

> (2) fix gecos buffer length and make some other buffers have a
>     consistent size (this is #640781)
>     This change was in 0.8.5 and is scheduled for a next 0.7 upstream
>     release. The bug reporter requested this change to go in a squeeze
>     point release.
>     The diff:
>     http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1727&view=revision
>     svn diff -c 1727 http://arthurdejong.org/svn/nss-pam-ldapd

ACK.

> (3) fix two possible NULL pointer dereferences (not very common
>     scenario)
>     These changes were in 0.8.5 and are scheduled for a next 0.7
>     upstream release.
>     The diffs:
>     http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1728&view=revision
>     http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1730&view=revision
>     svn diff -c 1728 http://arthurdejong.org/svn/nss-pam-ldapd

ACK.

>     svn diff -c 1730 http://arthurdejong.org/svn/nss-pam-ldapd

ACK.

> (4) increase buffer size for pam_authz_search and ensure log message
>     isn't cut short (this is Ubuntu bug #951343)
>     These changes were in 0.7.16 and 0.8.7.
>     The diffs:
>     http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1629&view=revision
>     http://arthurdejong.org/viewvc/nss-pam-ldapd?revision=1648&view=revision
>     svn diff -c 1629 http://arthurdejong.org/svn/nss-pam-ldapd

That seems gratious and is IMHO not suitable.

>     svn diff -c 1648 http://arthurdejong.org/svn/nss-pam-ldapd

ACK.

Kind regards
Philipp Kern

Attachment: signature.asc
Description: Digital signature

Reply via email to