- Issued:
- 2011-05-19
- Updated:
- 2011-05-19
RHBA-2011:0606 - Bug Fix Advisory
Synopsis
bind-dyndb-ldap bug fix and enhancement update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An updated bind-dyndb-ldap package that fixes several bugs and adds several
enhancements is now available for Red Hat Enterprise Linux 6.
Description
The dynamic LDAP back-end is a plug-in for BIND that provides an LDAP
database back-end capabilities. It features support for dynamic updates and
internal caching, to lift the load off of your LDAP server.
This update fixes the following bugs:
- the plugin didn't load child zones correctly. The plugin has been fixed and
now loads child zones well. (BZ#658286)
- named aborted when attempting to connect to a local LDAP server during boot.
Now it does not abort but the administrator must call "rndc reload" when LDAP
server starts to correctly fetch zones. (BZ#662930)
- the plugin flooded logs with too many messages. Now those messages are logged
only when named is started with the "-d" (debug) parameter. (BZ#666244)
- the plugin was rebased to 0.2.0 bugfix release. (BZ#667704)
- queries for ANY type were not handled correctly, only SOA records were
returned. The plugin was fixed and now all records are returned when asked.
(BZ#667727)
- the plugin failed to reconnect to the LDAP server when SASL authentication was
used. The plugin was fixed and reconnection now works. (BZ#667730)
- the plugin failed to delete nodes from the LDAP database when all resource
records associated with the node were removed. Now the plugin deletes the empty
nodes. (BZ#667732)
- the plugin did not emit enough information when it was configured to use
invalid credentials. Now it emits enough details. (BZ#667733)
This update adds the following enhancements:
- It is now possible to specify allow-query and allow-transfer ACLs for zones.
(BZ#667729)
- It is now possible to set timeout for queries to the LDAP server. (BZ#667734)
Users are advised to upgrade to this updated bind-dyndb-ldap package, which
resolves these issues.
Solution
Before applying this update, make sure all previously-released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259
Affected Products
- Red Hat Enterprise Linux Server 6 x86_64
- Red Hat Enterprise Linux Server 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
- Red Hat Enterprise Linux Workstation 6 x86_64
- Red Hat Enterprise Linux Workstation 6 i386
- Red Hat Enterprise Linux for IBM z Systems 6 s390x
- Red Hat Enterprise Linux for Power, big endian 6 ppc64
- Red Hat Enterprise Linux Server from RHUI 6 x86_64
- Red Hat Enterprise Linux Server from RHUI 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6 s390x
- Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6 s390x
Fixes
- BZ - 662930 - named fails to start if using local ldap server
- BZ - 666244 - bind-dyndb-ldap produces excessive logs
- BZ - 667727 - Fix handling of ANY queries
- BZ - 667730 - Reconnection fails with SASL
- BZ - 667732 - Addition/deletion of records only uses modify operations
- BZ - 667733 - Bad handling of invalid credentials
- BZ - 667734 - Set a reasonable timeout for LDAP queries
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 6
SRPM | |
---|---|
bind-dyndb-ldap-0.2.0-1.el6.src.rpm | SHA-256: acfd9d60e73f3752b99055a50aa2e0a28a0127865ba45b08d4a52e6399ff4205 |
x86_64 | |
bind-dyndb-ldap-0.2.0-1.el6.x86_64.rpm | SHA-256: d91778a71b33fd345fa6cffc2f9de5fd4aff2460b596b7c21e3499021b56812b |
bind-dyndb-ldap-0.2.0-1.el6.x86_64.rpm | SHA-256: d91778a71b33fd345fa6cffc2f9de5fd4aff2460b596b7c21e3499021b56812b |
bind-dyndb-ldap-debuginfo-0.2.0-1.el6.x86_64.rpm | SHA-256: f784926ba1c46806b13177b4c7af60ab96b20c522198a1a2c50f895fc68b358d |
bind-dyndb-ldap-debuginfo-0.2.0-1.el6.x86_64.rpm | SHA-256: f784926ba1c46806b13177b4c7af60ab96b20c522198a1a2c50f895fc68b358d |
i386 | |
bind-dyndb-ldap-0.2.0-1.el6.i686.rpm | SHA-256: 0b79a05b26e4c6ea0842c87939aff39081722579aa574b0f666a857579d6d22f |
bind-dyndb-ldap-debuginfo-0.2.0-1.el6.i686.rpm | SHA-256: f43dcb9937f4c1f026e18218882d24452fda3bdc246568f9feb3e143c2422565 |
Red Hat Enterprise Linux Server from RHUI 6
SRPM | |
---|---|
bind-dyndb-ldap-0.2.0-1.el6.src.rpm | SHA-256: acfd9d60e73f3752b99055a50aa2e0a28a0127865ba45b08d4a52e6399ff4205 |
x86_64 | |
bind-dyndb-ldap-0.2.0-1.el6.x86_64.rpm | SHA-256: d91778a71b33fd345fa6cffc2f9de5fd4aff2460b596b7c21e3499021b56812b |
bind-dyndb-ldap-debuginfo-0.2.0-1.el6.x86_64.rpm | SHA-256: f784926ba1c46806b13177b4c7af60ab96b20c522198a1a2c50f895fc68b358d |
i386 | |
bind-dyndb-ldap-0.2.0-1.el6.i686.rpm | SHA-256: 0b79a05b26e4c6ea0842c87939aff39081722579aa574b0f666a857579d6d22f |
bind-dyndb-ldap-debuginfo-0.2.0-1.el6.i686.rpm | SHA-256: f43dcb9937f4c1f026e18218882d24452fda3bdc246568f9feb3e143c2422565 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support 6
SRPM | |
---|---|
bind-dyndb-ldap-0.2.0-1.el6.src.rpm | SHA-256: acfd9d60e73f3752b99055a50aa2e0a28a0127865ba45b08d4a52e6399ff4205 |
x86_64 | |
bind-dyndb-ldap-0.2.0-1.el6.x86_64.rpm | SHA-256: d91778a71b33fd345fa6cffc2f9de5fd4aff2460b596b7c21e3499021b56812b |
bind-dyndb-ldap-debuginfo-0.2.0-1.el6.x86_64.rpm | SHA-256: f784926ba1c46806b13177b4c7af60ab96b20c522198a1a2c50f895fc68b358d |
i386 | |
bind-dyndb-ldap-0.2.0-1.el6.i686.rpm | SHA-256: 0b79a05b26e4c6ea0842c87939aff39081722579aa574b0f666a857579d6d22f |
bind-dyndb-ldap-debuginfo-0.2.0-1.el6.i686.rpm | SHA-256: f43dcb9937f4c1f026e18218882d24452fda3bdc246568f9feb3e143c2422565 |
Red Hat Enterprise Linux Workstation 6
SRPM | |
---|---|
bind-dyndb-ldap-0.2.0-1.el6.src.rpm | SHA-256: acfd9d60e73f3752b99055a50aa2e0a28a0127865ba45b08d4a52e6399ff4205 |
x86_64 | |
bind-dyndb-ldap-0.2.0-1.el6.x86_64.rpm | SHA-256: d91778a71b33fd345fa6cffc2f9de5fd4aff2460b596b7c21e3499021b56812b |
bind-dyndb-ldap-debuginfo-0.2.0-1.el6.x86_64.rpm | SHA-256: f784926ba1c46806b13177b4c7af60ab96b20c522198a1a2c50f895fc68b358d |
i386 | |
bind-dyndb-ldap-0.2.0-1.el6.i686.rpm | SHA-256: 0b79a05b26e4c6ea0842c87939aff39081722579aa574b0f666a857579d6d22f |
bind-dyndb-ldap-debuginfo-0.2.0-1.el6.i686.rpm | SHA-256: f43dcb9937f4c1f026e18218882d24452fda3bdc246568f9feb3e143c2422565 |
Red Hat Enterprise Linux for IBM z Systems 6
SRPM | |
---|---|
bind-dyndb-ldap-0.2.0-1.el6.src.rpm | SHA-256: acfd9d60e73f3752b99055a50aa2e0a28a0127865ba45b08d4a52e6399ff4205 |
s390x | |
bind-dyndb-ldap-0.2.0-1.el6.s390x.rpm | SHA-256: 7f585ee556b96ddbad9b996c46a73a72e4902cde2627f53cfc64b7898a55abc3 |
bind-dyndb-ldap-debuginfo-0.2.0-1.el6.s390x.rpm | SHA-256: 5eaea017e97cdb2f96aab47c0734debb42dee5d9bd20cf330dbb8c1ee03116a1 |
Red Hat Enterprise Linux for Power, big endian 6
SRPM | |
---|---|
bind-dyndb-ldap-0.2.0-1.el6.src.rpm | SHA-256: acfd9d60e73f3752b99055a50aa2e0a28a0127865ba45b08d4a52e6399ff4205 |
ppc64 | |
bind-dyndb-ldap-0.2.0-1.el6.ppc64.rpm | SHA-256: e64aeee5371fa9a6628982e45bc9ea4be74fb7f09a608460ecf31abd5b10bbcb |
bind-dyndb-ldap-debuginfo-0.2.0-1.el6.ppc64.rpm | SHA-256: 8cbba3e14972c4e399486162592894134098771353e1a4e39e676dfe81a4822c |
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6
SRPM | |
---|---|
bind-dyndb-ldap-0.2.0-1.el6.src.rpm | SHA-256: acfd9d60e73f3752b99055a50aa2e0a28a0127865ba45b08d4a52e6399ff4205 |
s390x | |
bind-dyndb-ldap-0.2.0-1.el6.s390x.rpm | SHA-256: 7f585ee556b96ddbad9b996c46a73a72e4902cde2627f53cfc64b7898a55abc3 |
bind-dyndb-ldap-debuginfo-0.2.0-1.el6.s390x.rpm | SHA-256: 5eaea017e97cdb2f96aab47c0734debb42dee5d9bd20cf330dbb8c1ee03116a1 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6
SRPM | |
---|---|
bind-dyndb-ldap-0.2.0-1.el6.src.rpm | SHA-256: acfd9d60e73f3752b99055a50aa2e0a28a0127865ba45b08d4a52e6399ff4205 |
x86_64 | |
bind-dyndb-ldap-0.2.0-1.el6.x86_64.rpm | SHA-256: d91778a71b33fd345fa6cffc2f9de5fd4aff2460b596b7c21e3499021b56812b |
bind-dyndb-ldap-debuginfo-0.2.0-1.el6.x86_64.rpm | SHA-256: f784926ba1c46806b13177b4c7af60ab96b20c522198a1a2c50f895fc68b358d |
i386 | |
bind-dyndb-ldap-0.2.0-1.el6.i686.rpm | SHA-256: 0b79a05b26e4c6ea0842c87939aff39081722579aa574b0f666a857579d6d22f |
bind-dyndb-ldap-debuginfo-0.2.0-1.el6.i686.rpm | SHA-256: f43dcb9937f4c1f026e18218882d24452fda3bdc246568f9feb3e143c2422565 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6
SRPM | |
---|---|
bind-dyndb-ldap-0.2.0-1.el6.src.rpm | SHA-256: acfd9d60e73f3752b99055a50aa2e0a28a0127865ba45b08d4a52e6399ff4205 |
s390x | |
bind-dyndb-ldap-0.2.0-1.el6.s390x.rpm | SHA-256: 7f585ee556b96ddbad9b996c46a73a72e4902cde2627f53cfc64b7898a55abc3 |
bind-dyndb-ldap-debuginfo-0.2.0-1.el6.s390x.rpm | SHA-256: 5eaea017e97cdb2f96aab47c0734debb42dee5d9bd20cf330dbb8c1ee03116a1 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.