Sicherheit: Fehlende Passwortabfrage in slapi-nis
Aktuelle Meldungen Distributionen
Name: Fehlende Passwortabfrage in slapi-nis
ID: FEDORA-2014-14427
Distribution: Fedora
Plattformen: Fedora 21
Datum: Mo, 10. November 2014, 12:46
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7828
Applikationen: slapi-nis


Name        : slapi-nis
Product : Fedora 21
Version : 0.54.1
Release : 1.fc21
URL : http://slapi-nis.fedorahosted.org/
Summary : NIS Server and Schema Compatibility plugins for Directory Server
Description :
This package provides two plugins for Red Hat and 389 Directory Server.

The NIS Server plugin allows the directory server to act as a NIS server
for clients, dynamically generating and updating NIS maps according to
its configuration and the contents of the DIT, and serving the results to
clients using the NIS protocol as if it were an ordinary NIS server.

The Schema Compatibility plugin allows the directory server to provide an
alternate view of entries stored in part of the DIT, optionally adding,
dropping, or renaming attribute values, and optionally retrieving values
for attributes from multiple entries in the tree.

Update Information:


- Update to upstream 4.1.1
- see http://www.freeipa.org/page/Releases/4.1.1
- fix CVE-2014-7828


- support FreeIPA overrides in LDAP BIND callback
- ignore FreeIPA override searchs outside configured schema compat subtrees

[ 1 ] Bug #1157989 - ldapsearch does not find existing overrides for FreeIPA
ID views when slapi-nis 0.54 is enabled

This update can be installed with the "yum" update program. Use
su -c 'yum update slapi-nis' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list
Pro-Linux @Facebook
Neue Nachrichten