-
Committer:
Package Import Robot
-
Author(s):
Jamie Strandboge
-
Date:
2013-06-13 06:49:54 UTC
-
mfrom:
(43.1.2 raring-proposed)
-
Revision ID:
package-import@ubuntu.com-20130613064954-8qdgpg6z73qr7h5g
Tags: 1:2013.1.1-0ubuntu2.1
* SECURITY UPDATE: fix authentication bypass when using LDAP backend
- debian/patches/CVE-2013-2157.patch: identity/backends/ldap/core.py is
adjusted to raise an assertion for invalid password when using LDAP and
an empty password is submitted
- CVE-2013-2157
- LP: #1187305