- Issued:
- 2012-10-18
- Updated:
- 2013-02-20
RHBA-2012:1389 - Bug Fix Advisory
Synopsis
mod_authz_ldap bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated mod_authz_ldap packages that fix three bugs are now available for Red
Hat Enterprise Linux 6.
Description
The mod_authz_ldap packages provide a module for the Apache HTTP Server to
authenticate users against an LDAP database.
This update fixes the following bugs:
- Prior to this update, the License field of the mod_authz_ldap packages
contained an incorrect tag. This update modifies the license text. Now, the
license tag correctly reads "ASL1.0". (BZ#607797)
- Prior to this update, the mod_authz_ldap module could leak memory. As a
consequence, the memory consumption of the httpd process could increase as more
requests were processed. This update modifies the underlying code to handle
LDAP correctly. Now, the memory consumption as at expected levels.(BZ#643691)
- Prior to this update, passwords were logged in plain text to the error log
when an LDAP bind password was configured if a connection error occurred. This
update modifies the underlying code to prevent passwords from being logged in
error conditions. (BZ#782442)
All users of mod_authz_ldap are advised to upgrade to this updated package,
which fixes these bugs.
Solution
Before applying this update, make sure all previously-released errata relevant
to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red
Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258
Affected Products
- Red Hat Enterprise Linux Server 6 x86_64
- Red Hat Enterprise Linux Server 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
- Red Hat Enterprise Linux Workstation 6 x86_64
- Red Hat Enterprise Linux Workstation 6 i386
- Red Hat Enterprise Linux for IBM z Systems 6 s390x
- Red Hat Enterprise Linux for Power, big endian 6 ppc64
- Red Hat Enterprise Linux Server from RHUI 6 x86_64
- Red Hat Enterprise Linux Server from RHUI 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6 s390x
Fixes
- BZ - 782442 - mod_authz_ldap logs the plain text password from AuthzLDAPBindPassword in Apache's log files when it is invalid.
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 6
| SRPM | |
|---|---|
| mod_authz_ldap-0.26-16.el6.src.rpm | SHA-256: 531fd5fb09a09187167e18473afcd61955060d045813bb8a3f29e226799f5be3 |
| x86_64 | |
| mod_authz_ldap-0.26-16.el6.x86_64.rpm | SHA-256: c102c93b403701525e867cb7a3917f7a3a1624bee03fb6cbe2817ee4352781fe |
| mod_authz_ldap-debuginfo-0.26-16.el6.x86_64.rpm | SHA-256: 5acb97ab482ae4500f72012823f3c3cfbbc855934261bb8a5dadfd51daae146f |
| i386 | |
| mod_authz_ldap-0.26-16.el6.i686.rpm | SHA-256: 8be60c035094fb87058fc00ed93481ad6664237416c45312b16b5aa7f52ac769 |
| mod_authz_ldap-debuginfo-0.26-16.el6.i686.rpm | SHA-256: bc803d8c1cc1b303618f8a081a2edd3782bf695d8fc39cd1745b348134653005 |
Red Hat Enterprise Linux Server from RHUI 6
| SRPM | |
|---|---|
| mod_authz_ldap-0.26-16.el6.src.rpm | SHA-256: 531fd5fb09a09187167e18473afcd61955060d045813bb8a3f29e226799f5be3 |
| x86_64 | |
| mod_authz_ldap-0.26-16.el6.x86_64.rpm | SHA-256: c102c93b403701525e867cb7a3917f7a3a1624bee03fb6cbe2817ee4352781fe |
| mod_authz_ldap-debuginfo-0.26-16.el6.x86_64.rpm | SHA-256: 5acb97ab482ae4500f72012823f3c3cfbbc855934261bb8a5dadfd51daae146f |
| i386 | |
| mod_authz_ldap-0.26-16.el6.i686.rpm | SHA-256: 8be60c035094fb87058fc00ed93481ad6664237416c45312b16b5aa7f52ac769 |
| mod_authz_ldap-debuginfo-0.26-16.el6.i686.rpm | SHA-256: bc803d8c1cc1b303618f8a081a2edd3782bf695d8fc39cd1745b348134653005 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support 6
| SRPM | |
|---|---|
| mod_authz_ldap-0.26-16.el6.src.rpm | SHA-256: 531fd5fb09a09187167e18473afcd61955060d045813bb8a3f29e226799f5be3 |
| x86_64 | |
| mod_authz_ldap-0.26-16.el6.x86_64.rpm | SHA-256: c102c93b403701525e867cb7a3917f7a3a1624bee03fb6cbe2817ee4352781fe |
| mod_authz_ldap-debuginfo-0.26-16.el6.x86_64.rpm | SHA-256: 5acb97ab482ae4500f72012823f3c3cfbbc855934261bb8a5dadfd51daae146f |
| i386 | |
| mod_authz_ldap-0.26-16.el6.i686.rpm | SHA-256: 8be60c035094fb87058fc00ed93481ad6664237416c45312b16b5aa7f52ac769 |
| mod_authz_ldap-debuginfo-0.26-16.el6.i686.rpm | SHA-256: bc803d8c1cc1b303618f8a081a2edd3782bf695d8fc39cd1745b348134653005 |
Red Hat Enterprise Linux Workstation 6
| SRPM | |
|---|---|
| mod_authz_ldap-0.26-16.el6.src.rpm | SHA-256: 531fd5fb09a09187167e18473afcd61955060d045813bb8a3f29e226799f5be3 |
| x86_64 | |
| mod_authz_ldap-0.26-16.el6.x86_64.rpm | SHA-256: c102c93b403701525e867cb7a3917f7a3a1624bee03fb6cbe2817ee4352781fe |
| mod_authz_ldap-debuginfo-0.26-16.el6.x86_64.rpm | SHA-256: 5acb97ab482ae4500f72012823f3c3cfbbc855934261bb8a5dadfd51daae146f |
| i386 | |
| mod_authz_ldap-0.26-16.el6.i686.rpm | SHA-256: 8be60c035094fb87058fc00ed93481ad6664237416c45312b16b5aa7f52ac769 |
| mod_authz_ldap-debuginfo-0.26-16.el6.i686.rpm | SHA-256: bc803d8c1cc1b303618f8a081a2edd3782bf695d8fc39cd1745b348134653005 |
Red Hat Enterprise Linux for IBM z Systems 6
| SRPM | |
|---|---|
| mod_authz_ldap-0.26-16.el6.src.rpm | SHA-256: 531fd5fb09a09187167e18473afcd61955060d045813bb8a3f29e226799f5be3 |
| s390x | |
| mod_authz_ldap-0.26-16.el6.s390x.rpm | SHA-256: c0973cf4e35cdd710bd200697d78a43683f8e6dd0def44bdfb5185fff908e6b4 |
| mod_authz_ldap-debuginfo-0.26-16.el6.s390x.rpm | SHA-256: d058d87ee2e23ee296b526b0d2e4629ddd4df2632c0283ade2a750620f11c436 |
Red Hat Enterprise Linux for Power, big endian 6
| SRPM | |
|---|---|
| mod_authz_ldap-0.26-16.el6.src.rpm | SHA-256: 531fd5fb09a09187167e18473afcd61955060d045813bb8a3f29e226799f5be3 |
| ppc64 | |
| mod_authz_ldap-0.26-16.el6.ppc64.rpm | SHA-256: 4fc0642ddfc1e74bd917d6565f3c97ba64283550910eee1d71453c13f42f9918 |
| mod_authz_ldap-debuginfo-0.26-16.el6.ppc64.rpm | SHA-256: efe8cb77fdd6adaa3dc44f65b8e754204b099796a8220383b66a578a6479d064 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6
| SRPM | |
|---|---|
| mod_authz_ldap-0.26-16.el6.src.rpm | SHA-256: 531fd5fb09a09187167e18473afcd61955060d045813bb8a3f29e226799f5be3 |
| s390x | |
| mod_authz_ldap-0.26-16.el6.s390x.rpm | SHA-256: c0973cf4e35cdd710bd200697d78a43683f8e6dd0def44bdfb5185fff908e6b4 |
| mod_authz_ldap-debuginfo-0.26-16.el6.s390x.rpm | SHA-256: d058d87ee2e23ee296b526b0d2e4629ddd4df2632c0283ade2a750620f11c436 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.