New upstream microrelease 2.5.13

Bug #1983618 reported by Sergio Durigan Junior
10
This bug affects 1 person
Affects Status Importance Assigned to Milestone
openldap (Ubuntu)
Fix Released
High
Sergio Durigan Junior
Jammy
Fix Released
High
Sergio Durigan Junior

Bug Description

[ Impact ]

 * MRE for the latest stable OpenLDAP 2.5.x release, 2.5.13.

This update includes bugfixes only following the SRU policy exception defined at https://wiki.ubuntu.com/OpenLDAPUpdates.

[ Major Changes ]

 * See the list of bugs fixed in this release here:

https://<email address hidden>/thread/3PLJDVP7QWTRFHC2GPQTGBLEQFCBUZZ2/

[ Test Plan ]

 * Upstream gitlab pipeline results: https://git.openldap.org/openldap/openldap/-/pipelines/4504

 * Upstream "call for testing": https://<email address hidden>/thread/RXOSXVLKTIDM4XJUA5EZZ42677JXRHYN/

 * As described in the MRE wiki page for OpenLDAP, the test plan is to build the package in bileto and make sure that (1) all build-time tests pass and (2) all autopkgtest runs (from reverse dependencies) also pass.

 * Build log (amd64) confirming that the build-time testsuite has been performed and completed successfully: https://launchpad.net/~ci-train-ppa-service/+archive/ubuntu/4887/+build/24250107

 * Bileto ticket: https://bileto.ubuntu.com/#/ticket/4895

[ Where problems could occur ]

 * Upstream tests are always executed during build-time. There are many reverse dependencies whose dep8 tests depend on OpenLDAP so the coverage is good. Nevertheless, there is always a risk for something to break since we are dealing with a microrelease upgrade. Whenever a test failure is detected, we will be on top of it and make sure it doesn't affect existing users.

[ Other Info ]

 * This is a reoccurring MRE. See below for links to previous OpenLDAP MREs.

 * CVEs fixed by this release:
   - None.

Current versions in supported releases that got updates:
 openldap | 2.5.12+dfsg-0ubuntu0.22.04.1 | jammy-updates | source

Special cases:
- None.

Previous MREs for OpenLDAP:
- https://pad.lv/1977627

As usual we test and prep from the PPA and then push through SRU/Security as applicable.

Related branches

Changed in openldap (Ubuntu Jammy):
status: New → In Progress
importance: Undecided → High
assignee: nobody → Sergio Durigan Junior (sergiodj)
Changed in openldap (Ubuntu):
status: In Progress → Invalid
assignee: Sergio Durigan Junior (sergiodj) → nobody
description: updated
tags: added: server-todo
tags: added: needs-mre-backport
Changed in openldap (Ubuntu):
milestone: ubuntu-22.08 → none
description: updated
Revision history for this message
Steve Langasek (vorlon) wrote : Please test proposed package

Hello Sergio, or anyone else affected,

Accepted openldap into jammy-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/openldap/2.5.13+dfsg-0ubuntu0.22.04.1 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-needed-jammy to verification-done-jammy. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed-jammy. In either case, without details of your testing we will not be able to proceed.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance for helping!

N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.

Changed in openldap (Ubuntu Jammy):
status: In Progress → Fix Committed
tags: added: verification-needed verification-needed-jammy
Revision history for this message
Sergio Durigan Junior (sergiodj) wrote :

As usual with non-security updates, we use the results of autopkgtest in order to perform the verification. In this case, all tests succeeded for openldap in Jammy. Therefore, tagging as verification-done-jammy.

tags: added: verification-done verification-done-jammy
removed: server-todo verification-needed verification-needed-jammy
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package openldap - 2.5.13+dfsg-0ubuntu0.22.04.1

---------------
openldap (2.5.13+dfsg-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream version (LP: #1983618).
    - Several fixes, including memory leaks that affected libldap.
    - Added slapo-emptyds contrib module (ITS#8882).

 -- Sergio Durigan Junior <email address hidden> Fri, 05 Aug 2022 10:51:52 -0400

Changed in openldap (Ubuntu Jammy):
status: Fix Committed → Fix Released
Revision history for this message
Robie Basak (racb) wrote : Update Released

The verification of the Stable Release Update for openldap has completed successfully and the package is now being released to -updates. Subsequently, the Ubuntu Stable Release Updates Team is being unsubscribed and will not receive messages about this bug report. In the event that you encounter a regression using the package from -updates please report a new bug using ubuntu-bug and tag the bug report regression-update so we can easily find any regressions.

Robie Basak (racb)
Changed in openldap (Ubuntu):
status: Invalid → Triaged
Changed in openldap (Ubuntu):
assignee: nobody → Sergio Durigan Junior (sergiodj)
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package openldap - 2.5.13+dfsg-1ubuntu1

---------------
openldap (2.5.13+dfsg-1ubuntu1) kinetic; urgency=medium

  * Merge with Debian unstable (LP: #1983618). Remaining changes:
    - Enable AppArmor support:
      + d/apparmor-profile: add AppArmor profile
      + d/rules: use dh_apparmor
      + d/control: Build-Depends on dh-apparmor
      + d/slapd.README.Debian: add note about AppArmor
    - Enable ufw support:
      + d/control: suggest ufw.
      + d/rules: install ufw profile.
      + d/slapd.ufw.profile: add ufw profile.
    - d/{rules,slapd.py}: Add apport hook.
    - d/rules: better regexp to match the Maintainer tag in d/control,
      needed in the Ubuntu case because of XSBC-Original-Maintainer
      (Closes #960448, LP #1875697)
    - Enable SASL/GSSAPI tests. (LP #1976508)
      + d/control: Update B-D to include required dependencies needed to run
        SASL/GSSAPI tests during build time, and mark them "!nocheck".
      Thanks: Andreas Hasenack <email address hidden>

 -- Sergio Durigan Junior <email address hidden> Tue, 20 Sep 2022 15:30:47 -0400

Changed in openldap (Ubuntu):
status: Triaged → Fix Released
tags: removed: needs-mre-backport
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.