Branches for Gutsy

Author: Russ Allbery
Revision Date: 2007-05-30 22:42:28 UTC

* New upstream release with many bug fixes.
  - Allow syncprov to follow aliases. (Closes: #422087)
* Apply upstream patches:
  - ITS#4924: client crash on incorrectly tagged result from server.
  - ITS#4925: NOOP modify with BDB backend crashed slapd.
  - ITS#4966: Delete of valsort-controlled entries crashed slapd.
* Enable SLAPI support. (Closes: #390954)
* Re-enable use of the epoll system call since Debian no longer supports
  2.4 kernels. This means that the OpenLDAP packages will not work on
  pre-2.6 kernels.
* Remove schema files that contain text from IETF RFCs from the upstream
  source since that text is not DFSG-free. Instead, install stripped
  versions of those schema files containing only the functional
  interface specifications, a comment explaining why this is needed, and
  a pointer to the relevant RFC. (Closes: #361846)
* Document the repackaging of the upstream source in debian/copyright.
* Update config.guess and config.sub during the build instead of in the
  clean target and remove them in the clean target for a clean diff.
  Build-depend on autotools-dev so that we can unconditionally copy over
  the latest versions.
* Added commentary and upstream ITS numbers for several patches
  applicable upstream.
* Use debian/compat rather than the deprecated DH_COMPAT rules setting.
* Update to debhelper compatibility level V5 (no changes required).

Author: Kees Cook
Revision Date: 2008-07-31 16:06:53 UTC

* SECURITY UPDATE: denial of service via broken BER decoding.
* Added debian/patches/security-ber-decoding.patch: upstream fixes.
* References
  CVE-2008-2952

Author: Kees Cook
Revision Date: 2008-07-31 16:06:53 UTC

* SECURITY UPDATE: denial of service via broken BER decoding.
* Added debian/patches/security-ber-decoding.patch: upstream fixes.
* References
  CVE-2008-2952