The OpenLDAP project has announced the release of versions 2.6.8 and 2.5.18 of their LDAP directory server. Changes included in these releases appear to include:

• Fixed an issue with clients crashing or exiting after using a TLS-based connection (both versions)
• Fixed a client issue with channel binding on connections secured with certain EC certificates (both versions)
• Fixed an issue with peercred authentication for accounts with very large uid or gid values (both versions)
• Fixed an issue that could cause back-meta to hang when using the dynlist overlay (both versions)
• Fixed an issue that could prevent back-meta from proxying internal operations (both versions)
• Fixed a potential crash that could occur when abandoning a search operation with dynlist enabled (both versions)
• Fixed a potential crash that could occur if internal operations are attempted during early startup (both versions)
• Fixed a potential crash when trying to use the constraint overlay with a DN-based filter (version 2.6.8)
• Fixed an asyncmeta issue when adding a new target via cn=config (version 2.6.8)
• Moved nested group support to its own overlay (version 2.6.8)
• Fixed an issue in which memberof values may not be created when adding the member entries after they were added to the group (version 2.6.8)
• Added an alias overlay (version 2.6.8)