Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

net-nds/openldap: update to 2.5.14 #999

Merged
merged 4 commits into from
Jul 24, 2023
Merged

net-nds/openldap: update to 2.5.14 #999

merged 4 commits into from
Jul 24, 2023

Conversation

dongsupark
Copy link
Member

@dongsupark dongsupark commented Jul 20, 2023
edited
Loading

Update net-nds/openldap to 2.5.14 mainly to address CVE-2023-2953.

Based on Gentoo commit 5b1520ea69d4.

mask openldap 2.6.3

Mask openldap 2.6.3+ in overlay profiles, to take different steps of updating openldap.

  1. from 2.4 to 2.5,
  2. do an Alpha release around 2023-08, and
  3. finally update from 2.5 to 2.6.

Fixes flatcar/Flatcar#1120.

Testing done

CI: http://jenkins.infra.kinvolk.io:8080/job/container/job/packages_all_arches/2191/cldsv/

  • Changelog entries added in the respective changelog/ directory (user-facing change, bug fix, security fix, update)
  • Inspected CI output for image differences: /boot and /usr size, packages, list files for any missing binaries, kernel modules, config files, kernel modules, etc.

@dongsupark
portage net-nds/openldap: update to 2.5.14
031a66f 
Update net-nds/openldap to 2.5.14 mainly to address CVE-2023-2953.

Gentoo ref: 5b1520ea69d410ab743eb7998b5d886bbf597375
@dongsupark dongsupark temporarily deployed to development July 20, 2023 10:27 — with GitHub Actions Inactive
@github-actions
Copy link

github-actions bot commented Jul 20, 2023
edited
Loading

Build action triggered: https://github.com/flatcar/scripts/actions/runs/5620010766

@dongsupark dongsupark marked this pull request as ready for review July 20, 2023 15:33
@dongsupark
Copy link
Member Author

CI passed

@dongsupark dongsupark requested a review from a team July 21, 2023 07:58
@dongsupark
overlay profiles: mask openldap 2.6.3
ed7a926 
Do not update to openldap 2.6.3+, to take different steps of updating
openldap.

1) from 2.4 to 2.5,
2) do an Alpha release around 2023-08, and
3) finally update from 2.5 to 2.6.
@dongsupark
changelog: add changelog for openldap 2.5.14
0f5cf3e
@dongsupark
.github: add net-nds/openldap to portage packages list
4cec3b6 
Add net-nds/openldap to portage packages list for weekly updates.
@dongsupark dongsupark merged commit 679f0f1 into main Jul 24, 2023
1 check failed
@dongsupark dongsupark deleted the dongsu/openldap-2.5.14 branch July 24, 2023 15:42
@github-actions github-actions bot mentioned this pull request Nov 10, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@krnowak krnowak krnowak approved these changes

Assignees
No one assigned
Labels
main
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

update: openldap
2 participants
@dongsupark @krnowak