Synopsis

mod_authz_ldap bug fix update

Type/Severity

Bug Fix Advisory

Topic

Updated mod_authz_ldap packages are available that fix two bugs.

Description

mod_authz_ldap is a module for the Apache HTTP Server providing LDAP
authentication.

A bug was found which prevented authentication of users by mapping the
subject names in the SSL client certificates.

A bug in the handling of parentheses in configured filter expressions was
found.

Users are recommended to upgrade to these updated packages, which resolve
these issues.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Affected Products

• Red Hat Enterprise Linux Server 4 x86_64
• Red Hat Enterprise Linux Server 4 ia64
• Red Hat Enterprise Linux Server 4 i386
• Red Hat Enterprise Linux Workstation 4 x86_64
• Red Hat Enterprise Linux Workstation 4 ia64
• Red Hat Enterprise Linux Workstation 4 i386
• Red Hat Enterprise Linux Desktop 4 x86_64
• Red Hat Enterprise Linux Desktop 4 i386
• Red Hat Enterprise Linux for IBM z Systems 4 s390x
• Red Hat Enterprise Linux for IBM z Systems 4 s390
• Red Hat Enterprise Linux for Power, big endian 4 ppc

Fixes

• BZ - 191307 - The certificate mapping capability of mod_authz_ldap appears to be disabled in the RedHat binaries and source files.
• BZ - 192829 - Bug in processing parenthesis when using AuthzLDAPMapMethod 'issuersubject'

CVEs

(none)

References

(none)

Red Hat Enterprise Linux Server 4

SRPM
mod_authz_ldap-0.26-2.1.src.rpm	SHA-256: 2caeede041e882d1b2de3e98fca9ad0eefcf09b894c2f4faa7debf5e3ae12e70
x86_64
mod_authz_ldap-0.26-2.1.x86_64.rpm	SHA-256: b6fe2ec3fdb193c31bd9e402b6f3c7aa7de39fcf9f8947e4d33937d7aba61d7d
mod_authz_ldap-0.26-2.1.x86_64.rpm	SHA-256: b6fe2ec3fdb193c31bd9e402b6f3c7aa7de39fcf9f8947e4d33937d7aba61d7d
ia64
mod_authz_ldap-0.26-2.1.ia64.rpm	SHA-256: 89a938f475d3de2972281b98d4789ef1fe3d2593e3290251108c341a873d167b
mod_authz_ldap-0.26-2.1.ia64.rpm	SHA-256: 89a938f475d3de2972281b98d4789ef1fe3d2593e3290251108c341a873d167b
i386
mod_authz_ldap-0.26-2.1.i386.rpm	SHA-256: e0c695fda07a4c965fde2e1cdb095ad291ad7b51d2694a9d582f85a5a666fa3a
mod_authz_ldap-0.26-2.1.i386.rpm	SHA-256: e0c695fda07a4c965fde2e1cdb095ad291ad7b51d2694a9d582f85a5a666fa3a

Red Hat Enterprise Linux Workstation 4

SRPM
mod_authz_ldap-0.26-2.1.src.rpm	SHA-256: 2caeede041e882d1b2de3e98fca9ad0eefcf09b894c2f4faa7debf5e3ae12e70
x86_64
mod_authz_ldap-0.26-2.1.x86_64.rpm	SHA-256: b6fe2ec3fdb193c31bd9e402b6f3c7aa7de39fcf9f8947e4d33937d7aba61d7d
ia64
mod_authz_ldap-0.26-2.1.ia64.rpm	SHA-256: 89a938f475d3de2972281b98d4789ef1fe3d2593e3290251108c341a873d167b
i386
mod_authz_ldap-0.26-2.1.i386.rpm	SHA-256: e0c695fda07a4c965fde2e1cdb095ad291ad7b51d2694a9d582f85a5a666fa3a

Red Hat Enterprise Linux Desktop 4

SRPM
mod_authz_ldap-0.26-2.1.src.rpm	SHA-256: 2caeede041e882d1b2de3e98fca9ad0eefcf09b894c2f4faa7debf5e3ae12e70
x86_64
mod_authz_ldap-0.26-2.1.x86_64.rpm	SHA-256: b6fe2ec3fdb193c31bd9e402b6f3c7aa7de39fcf9f8947e4d33937d7aba61d7d
i386
mod_authz_ldap-0.26-2.1.i386.rpm	SHA-256: e0c695fda07a4c965fde2e1cdb095ad291ad7b51d2694a9d582f85a5a666fa3a

Red Hat Enterprise Linux for IBM z Systems 4

SRPM
mod_authz_ldap-0.26-2.1.src.rpm	SHA-256: 2caeede041e882d1b2de3e98fca9ad0eefcf09b894c2f4faa7debf5e3ae12e70
s390x
mod_authz_ldap-0.26-2.1.s390x.rpm	SHA-256: 7c8e3a814474a499d4cd339b3db08ff22265fbd28c48aeb00e4387880332cef6
s390
mod_authz_ldap-0.26-2.1.s390.rpm	SHA-256: 718d23188bb4272d81e856c52483e0ff4ee88ab942476b1f48b7934260f298e3

Red Hat Enterprise Linux for Power, big endian 4

SRPM
mod_authz_ldap-0.26-2.1.src.rpm	SHA-256: 2caeede041e882d1b2de3e98fca9ad0eefcf09b894c2f4faa7debf5e3ae12e70
ppc
mod_authz_ldap-0.26-2.1.ppc.rpm	SHA-256: 5550ef8896f26978f975366c337b43f1e71be930801885c093c379a73048c4b3