Netscape Directory Server 6.21 SP3 Release Notes
Copyright © 2006 Red Hat, Inc.
Red Hat, Inc.
1801 Varsity Drive
Raleigh NC 27606-2072 USA
Phone: +1 919 754 3700
Phone: 888 733 4281
Fax: +1 919 754 3701
PO Box 13588
Research Triangle Park NC 27709 USA
rhel-selg(EN)-4-HTML-RHI (2006-03-25-T16:20)
Copyright © 2001 Sun Microsystems, Inc. Used by permission. Copyright © 2006 by Red Hat, Inc. All rights reserved. This material may be distributed only subject to the terms and conditions set forth in the Open Publication License, V1.0 or later (the latest version is presently available at http://www.opencontent.org/openpub/).
Distribution of substantively modified versions of this document is prohibited without the explicit permission of the copyright holder.
Distribution of the work or derivative of the work in any standard (paper) book form for commercial purposes is prohibited unless prior permission is obtained from the copyright holder.
Red Hat and the Red Hat "Shadow Man" logo are registered trademarks of Red Hat, Inc. in the United States and other countries.
All other trademarks referenced herein are the property of their respective owners.
The GPG fingerprint of the security@redhat.com key is:
CA 20 86 86 2B D6 9D FC 65 F6 EC C4 21 91 80 CD DB 42 A6 0E
Summary
This service pack for the 6.21 release fixes a number of bugs. There are no new features.
Platform Requirements
Platform requirements for this release are identical to those for 6.21.
HP UX 11.0 and 11i
Red Hat Linux 7.3
Red Hat Linux Advanced Server 2.1
Sun Solaris 8 and Solaris 9
Installing Netscape Directory Server 6.21 SP3
To install Netscape Directory Server 6.21 SP3, perform the following steps:
Warning: Once this patch has been installed it cannot be easily removed. It is strongly recommended to backup your data prior to installation by following step 4 below.
Change to the existing Netscape Directory Server 6.21 installation directory (or serverroot).
Stop the Netscape Administration Server:
./stop-admin
Stop each instance of Netscape Directory Server 6.21 running under the serverroot:
./slapd-<your instance name>/stop-slapd
Backup each instance of Netscape Directory Server 6.21 running under the serverroot:
cd slapd-<your instance name> ; ./db2bak
Unzip and untar the appropriate service pack tarball over your serverroot:
cd ..; gzip -dc ds6.21_sp2_<Your Operating System>.tar.gz | tar xvf -
Start each Netscape Directory Server 6.21 SP3 instance:
./slapd-<your instance name>/start-slapd
Start Netscape Adminstration Server:
./start-admin
Bug Fixes
Table 1 lists the bugs addressed in Netscape Directory Server 6.21 SP3, either via bug fixes or available supported workarounds.
Table 1. Bugs addressed in Netscape Directory Server 6.21 SP3
| Bug Number | Description | |
|---|---|---|
| 179135, 179137 | Evgeny Legerov discovered several flaws affecting Fedora Directory Server using the GLEG ProtoVer LDAP test suite. A remote attacker who is able to connect to the directory server could send malicious requests that would cause the server to crash, leading to a denial of service. (CVE-2006-0451, CVE-2006-0452, CVE-2006-0453) | |
| 184552 | dbscan has been rebuilt to link to libdb version 4.2 as used by Directory Server. | |
| 175897 | There was an issue in evaluating intersection of multiple range searches when the attribute of each range search is different from each other. For example, &(attr1 <= val1)(attr2 >= val2). The issue has been fixed. | |
| 175063 | When an ldif file contains an entry with the dn that includes escaped double quotes, importing the entry could possibly fail and the entry is skipped. The subsequent reindex fails due to the skip. The issue has been fixed. | |
| 164843 | A client can only provide multiple attributes with the same attribute type and value if those attributes are language sub-types. This means that the following is allowed:
If that attribute is indexed, performing a delete that explicitly calls out the attribute language sub-type to be deleted will not remove the index for the remaining attribute. The issue has been fixed. | |
| 173687 | When the Directory Server effective user and the real user are different, there was a small window that creates log files owned by the real user that should be owned by the effective user. The issue has been fixed. | |
| 164834 | Ldap modify or replace may allow multiple attributes with the same value. The issue has been fixed. |
Known Issues
Table 2 lists the known issues in Netscape Directory Server 6.21 SP3.