Issued:
2011-05-19
Updated:
2011-05-19

RHBA-2011:0606 - bind-dyndb-ldap bug fix and enhancement update

Synopsis

bind-dyndb-ldap bug fix and enhancement update

Type/Severity

Bug Fix Advisory (none)

Topic

An updated bind-dyndb-ldap package that fixes several bugs and adds several enhancements is now available for Red Hat Enterprise Linux 6.

Description

The dynamic LDAP back-end is a plug-in for BIND that provides an LDAP database back-end capabilities. It features support for dynamic updates and internal caching, to lift the load off of your LDAP server.

This update fixes the following bugs:

  • the plugin didn't load child zones correctly. The plugin has been fixed and now loads child zones well. (BZ#658286)

  • named aborted when attempting to connect to a local LDAP server during boot. Now it does not abort but the administrator must call "rndc reload" when LDAP server starts to correctly fetch zones. (BZ#662930)

  • the plugin flooded logs with too many messages. Now those messages are logged only when named is started with the "-d" (debug) parameter. (BZ#666244)

  • the plugin was rebased to 0.2.0 bugfix release. (BZ#667704)

  • queries for ANY type were not handled correctly, only SOA records were returned. The plugin was fixed and now all records are returned when asked. (BZ#667727)

  • the plugin failed to reconnect to the LDAP server when SASL authentication was used. The plugin was fixed and reconnection now works. (BZ#667730)

  • the plugin failed to delete nodes from the LDAP database when all resource records associated with the node were removed. Now the plugin deletes the empty nodes. (BZ#667732)

  • the plugin did not emit enough information when it was configured to use invalid credentials. Now it emits enough details. (BZ#667733)

This update adds the following enhancements:

  • It is now possible to specify allow-query and allow-transfer ACLs for zones. (BZ#667729)

  • It is now possible to set timeout for queries to the LDAP server. (BZ#667734)

Users are advised to upgrade to this updated bind-dyndb-ldap package, which resolves these issues.

Solution

Before applying this update, make sure all previously-released errata relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at This content is not included.http://kbase.redhat.com/faq/docs/DOC-11259

Affected Products

ProductVersionArch
Red Hat Enterprise Linux for Power, big endian6ppc64
Red Hat Enterprise Linux for IBM z Systems6s390x
Red Hat Enterprise Linux Workstation6x86_64
Red Hat Enterprise Linux Workstation6i386
Red Hat Enterprise Linux Server6x86_64
Red Hat Enterprise Linux Server6i386
Red Hat Enterprise Linux Server from RHUI6x86_64
Red Hat Enterprise Linux Server from RHUI6i386
Red Hat Enterprise Linux Server - Extended Life Cycle Support6x86_64
Red Hat Enterprise Linux Server - Extended Life Cycle Support6i386
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension6x86_64
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension6i386
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems)6s390x
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems)6s390x

Updated Packages

  • bind-dyndb-ldap-debuginfo-0.2.0-1.el6.s390x.rpm
  • bind-dyndb-ldap-debuginfo-0.2.0-1.el6.i686.rpm
  • bind-dyndb-ldap-0.2.0-1.el6.s390x.rpm
  • bind-dyndb-ldap-0.2.0-1.el6.i686.rpm
  • bind-dyndb-ldap-debuginfo-0.2.0-1.el6.ppc64.rpm
  • bind-dyndb-ldap-0.2.0-1.el6.ppc64.rpm
  • bind-dyndb-ldap-debuginfo-0.2.0-1.el6.x86_64.rpm
  • bind-dyndb-ldap-0.2.0-1.el6.src.rpm
  • bind-dyndb-ldap-0.2.0-1.el6.x86_64.rpm

Fixes

CVEs

(none)

References

(none)

Additional information