-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 16 Jan 2025 17:16:37 +0100 Source: 389-ds-base Binary: 389-ds-base 389-ds-base-dbgsym 389-ds-base-dev 389-ds-base-libs 389-ds-base-libs-dbgsym Architecture: armhf Version: 2.3.1+dfsg1-1+deb12u1 Distribution: bookworm Urgency: high Maintainer: arm Build Daemon (arm-ubc-06) Changed-By: Andrej Shadura Description: 389-ds-base - 389 Directory Server suite - server 389-ds-base-dev - 389 Directory Server suite - development files 389-ds-base-libs - 389 Directory Server suite - libraries Closes: 1072531 1082852 Changes: 389-ds-base (2.3.1+dfsg1-1+deb12u1) bookworm; urgency=high . * Non-maintainer upload. * Apply security patches from the upstream: - CVE-2024-2199 and CVE-2024-8445: Crash when modifying userPassword using malformed input (Closes: #1072531, #1082852). - CVE-2024-5953: Denial of service while attempting to log in with a user with a malformed hash in their password. - CVE-2024-3657: Failure on the directory server with specially-crafted LDAP query leading to denial of service. Checksums-Sha1: 082bbed634d7ac6e8a3ead39769643afb0e7e438 9519176 389-ds-base-dbgsym_2.3.1+dfsg1-1+deb12u1_armhf.deb 9004d6c5030425b3377b90cf1666111328332ed7 73708 389-ds-base-dev_2.3.1+dfsg1-1+deb12u1_armhf.deb 207dfb35500359a6215ab32fe6c22d472beb9dc1 4090152 389-ds-base-libs-dbgsym_2.3.1+dfsg1-1+deb12u1_armhf.deb e5398408a86df3555903e351024c19fc84be496f 950792 389-ds-base-libs_2.3.1+dfsg1-1+deb12u1_armhf.deb 71b84052e29eaf3d8b59785c5376dcb7f65600d5 20264 389-ds-base_2.3.1+dfsg1-1+deb12u1_armhf-buildd.buildinfo d27bf78ee954a2e58d591998ea2d07f1642c9198 2051256 389-ds-base_2.3.1+dfsg1-1+deb12u1_armhf.deb Checksums-Sha256: d94104650a1613dff799b63f730603b097f67174bef81087abafe35356e0a767 9519176 389-ds-base-dbgsym_2.3.1+dfsg1-1+deb12u1_armhf.deb 354276b0cabd1ba47f1a633f7070b2870a9e2c392a951918af7f7727ed764137 73708 389-ds-base-dev_2.3.1+dfsg1-1+deb12u1_armhf.deb a2cf85b25a794251a2171fc557fa2816dbb52ef722e120a175523249234394f1 4090152 389-ds-base-libs-dbgsym_2.3.1+dfsg1-1+deb12u1_armhf.deb ac6d8aca95b36e5f5e8ef1cc4646eea606c94f8dae5f69dc5f3d7605f53b51c4 950792 389-ds-base-libs_2.3.1+dfsg1-1+deb12u1_armhf.deb de4771b3ba87f1e364199768c8f1ecfe406c2dc93a635bb7876df6e0bcd6baa4 20264 389-ds-base_2.3.1+dfsg1-1+deb12u1_armhf-buildd.buildinfo fa60af0f368a888fedc909842a788ab79bbfa2c8f8a392be752666270bde7b2d 2051256 389-ds-base_2.3.1+dfsg1-1+deb12u1_armhf.deb Files: fb2b4712018eaf970540ae287c7aab69 9519176 debug optional 389-ds-base-dbgsym_2.3.1+dfsg1-1+deb12u1_armhf.deb 17016cf4b1d0a47923bde9a356f0271e 73708 libdevel optional 389-ds-base-dev_2.3.1+dfsg1-1+deb12u1_armhf.deb c67aeb4f26526ef1246a43488249e0ce 4090152 debug optional 389-ds-base-libs-dbgsym_2.3.1+dfsg1-1+deb12u1_armhf.deb b13273092729b189e277918be218baa6 950792 libs optional 389-ds-base-libs_2.3.1+dfsg1-1+deb12u1_armhf.deb 4d05756ddcc43e8ad6b1c6cb1a279d35 20264 net optional 389-ds-base_2.3.1+dfsg1-1+deb12u1_armhf-buildd.buildinfo 853d4c80204187248fa613df81577935 2051256 net optional 389-ds-base_2.3.1+dfsg1-1+deb12u1_armhf.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEErcTbumGV7Ig2iXlfQdxRZ9J7nEgFAmeVJyIACgkQQdxRZ9J7 nEgteQ//eQzxv3yTVUhb6qK9stY1A3A05f3SziJjJcawM6vU3bS7wWOAGakrwDqb u9QHjwVeg/nuditMF83zuNwXHBoCUe4Ig1naCZa0rjV8F3uwLUXLEKCbwM16z/Y3 vS4Ot1Hy0gwZg9g1rdVRKXla5ZwvpcsidDjTncpG9vQIcAw+kH2ifYnOZaHsCIV9 a8wP3T4GjnYWU75XpvCwSfeBMqtxhWqCqpT4TBZbs4ru3MaZ5Wf/Ws70xtPlpD6E N2e+EIl8rI4Lh2xg257BTx3ffds5aDLrFtbjUDWYoXuUZCXAK252wvOoo2vjxrCj ZmtXCevGf/UYBWxPI7/O3g7dWNDB1RzI8Ih8VWbXh7JXy3mprb6LzLXBJ2yrAhLy wyN3yDs1bWspAhvIPStNCM7jrF97ttkB2PGZSyIQgwy9Dzcr5zV3f0gYF7xY0ciL lvx+POVUnevxClm05Fgz8B862m6wOYI+6+R3lAXskyU/iut5i6pvR4xzD2sUavSe /3+zk4BdrK4XwBMnd8cpFGNiwk/huemBXXGHkMbDso9L3MGUKDbNDyWifYUpa+kA 96N3gw6neZWnyblyxG8PUIGatQStjHJIUMBR1pqKl82uYMpaZPNgxyMi5kpF89iM LP5litRAi3Du4LLa7avMSNAL46Ws8b0i+I6sH7vVBJOP+Te0rbw= =WChu -----END PGP SIGNATURE-----