Symas software release announcements and comments

Symas OpenLDAP 2.4.21.2 Released

Posted on 16 April 2010 by svovi01 in Symas OpenLDAP
Comment This!

Symas OpenLDAP 2.4.21.2 is available on our download site.

This release is available immediately for these platforms:

  • RHEL4/RHEL5/SLES9/SLES10 on i386 and x86_64
  • SunOS 5.10 on SPARC 64-bit and 32-bit
  • Microsoft Windows on x86

The changes for this release include:

OpenLDAP:
Fixed assert in slaptools under Windows (Symas #865)
Fixed assert error in rwm ITS#6484 (Symas #807)
Fixed db_sql not in package (Symas #792)
Fixed solserver script doesn’t handle USER and GROUP settings from
config file (Symas #806)
Added delete and archive support to slapo-homedir (Symas #738)
Added HPOV overlays (Symas #827)
Fixed back-ldap+rwm+pcache core dump (Symas #858, ITS#6484)
Fixed back-bdb/hdb uninit lock DBT (Symas #844, ITS#6501)

OpenSSL:
Upgrade to 0.9.8n;
CFB cipher definition fixes.
Fix security issues CVE-2010-0740 and CVE-2010-0433.
Cipher definition fixes.
Workaround for slow RAND_poll() on some WIN32 versions.
Remove MD2 from algorithm tables.
SPKAC handling fixes.
Support for RFC5746 TLS renegotiation extension.
Compression memory leak fixed.
Compression session resumption fixed.
Ticket and SNI coexistence fixes.
Many fixes to DTLS handling.
Temporary work around for CVE-2009-3555: disable renegotiation.

April 13, 2010
Release Notes for Symas OpenLDAP
Gold and Silver, Version 2.4.21.2

This release of Symas OpenLDAP contains the following component versions:

OpenLDAP 2.4.21

BDB 4.8.26

Cyrus SASL 2.1.22

OpenSSL 0.9.8n

==============

*** Upgrade Alert ***

See the Upgrade alert included in the Release Notes for version 2.4.21.0
concerning compatibility with previous versions of Symas OpenLDAP 2.4.

==============

Known defects in this release:
CA.pl and c_rehash may not have the correct path to perl interpreter
if installed form the symas-openldap-client package (Symas #787)
The version number that is reported for Symas OpenLDAP by the Solaris
pkginfo command is incorrect for Solaris platforms (Symas #715)

Changes for this release:

Packaging:
No changes

OpenLDAP:
Fixed assert in slaptools under Windows (Symas #865)
Fixed assert error in rwm ITS#6484 (Symas #807)
Fixed db_sql not in package (Symas #792)
Fixed solserver script doesn’t handle USER and GROUP settings from
config file (Symas #806)
Added delete and archive support to slapo-homedir (Symas #738)
Added HPOV overlays (Symas #827)
Fixed back-ldap+rwm+pcache core dump (Symas #858, ITS#6484)
Fixed back-bdb/hdb uninit lock DBT (Symas #844, ITS#6501)

Berkeley DB:
No changes

OpenSSL:
Upgrade to 0.9.8n;
CFB cipher definition fixes.
Fix security issues CVE-2010-0740 and CVE-2010-0433.
Cipher definition fixes.
Workaround for slow RAND_poll() on some WIN32 versions.
Remove MD2 from algorithm tables.
SPKAC handling fixes.
Support for RFC5746 TLS renegotiation extension.
Compression memory leak fixed.
Compression session resumption fixed.
Ticket and SNI coexistence fixes.
Many fixes to DTLS handling.
Temporary work around for CVE-2009-3555: disable renegotiation.

SASL:
No Changes

Status of this release:
This is a production release and is made available for general use. We have
tested it in our labs and in the field and we believe it is suitable for
use in production environments. However, as is always the case with any
software, please test it in your own environment to make sure it meets your
requirements, Maintain backups of critical data and make appropriate
provisions for unexpected outages.

Because this release contains so many changes, we suggest that upgraders spend a
little more time than usual testing this release before putting it into
production.

Bug reports, comments, and suggestions should be submitted to your dedicated
support email address or to support@symas.com.

We look forward to hearing from you!

Comments are closed.