The 389 Directory Server project has released versions version 2.1.1 and 2.0.15. Changes in these releases appear to include:
- Fixed a security issue in which a user with an expired password would still be allowed to authenticate (both versions)
- Fixed a potential crash due to a double-free in virtual attribute processing in a persistent search (both versions)
- Fixed an issue in which a database update could fail if the filesystem page size was greater than 8KB (both versions)
- Fixed a potential race condition in disk monitoring (both versions)
- Fixed an issue that could arise when trying to import a certificate chain (both versions)
- Fixed an issue in memberOf excluded subtrees handling for modify DN operations (both versions)
- Fixed an issue in which the memberOf plugin did not work properly with multiple include scopes (both versions)
- Fixed an issue in which a container may fail to start with a bare uid or gid (both versions)
- Fixed an issue in which the server could return an incomplete RUV (both versions)
- Fixed a schema parsing issue for schema elements with names starting with “x-” (both versions)
- Fixed an issue that could crash the UI in some attribute uniqueness configurations (both versions)
- Fixed a dsconf issue that prevented specifying a backend by name rather than base DN (both versions)
- Fixed an issue with dsctl dbgen (both versions)
- Fixed a UI issue that prevented manually configuring the entry cache (both versions)
- Fixed a UI issue that prevented testing a SASL mapping regular expression (both versions)
- Fixed UID issues with the LDAP editor (version 2.0.15)
- Added support for recursively deleting subentries (version 2.1.1)
- Added the ability to abort an automatic member rebuild task (both versions)
- Added the ability to set TCP FIN timeout and keepalive time values (both versions)
- Added the ability flatten the tree when synchronizing with Active Directory (version 2.1.1)
- Added CLI support for managing entryUUID generation (version 2.0.15)
- Added entry and group types to the LDAP editor (both versions)
- Added CoS and role functionality to the UI (both versions)
- Added temporary password rules functionality to the UI (version 2.0.15)