-
Committer:
Package Import Robot
-
Author(s):
Timo Aaltonen
-
Date:
2013-02-11 00:32:12 UTC
-
Revision ID:
package-import@ubuntu.com-20130211003212-88gvzdii004uq1gy
Tags: 2.1.4-0ubuntu2
* 0110-Upload-CA-cert-in-the-directory-on-install.patch
0111-Update-plugin-to-upload-CA-certificate-to-LDAP.patch
0112-Do-SSL-CA-verification-and-hostname-validation.patch
0113-Use-secure-method-to-acquire-IPA-CA-certificate.patch:
- CVE-2012-5484 - The client in FreeIPA 2.x and 3.x before 3.1.2 does
not properly obtain the Certification Authority (CA) certificate
from the server, which allows man-in-the-middle attackers to spoof
a join procedure via a crafted certificate. (LP: #1104954)
* check-through-all-ldap-servers.patch: Check through all LDAP servers
in the domain during IPA discovery (ticket #1827). Patch from 2.2
to aid in porting patch 0113.