Oval Definition:	oval:org.mitre.oval:def:29208
Revision Date: 2015-08-17 Version: 3 Title: SUSE-SU-2015:1077-1 -- Security update for openldap2 (moderate) Description: openldap2 was updated to fix two security issues and one non-security bug.The following vulnerabilities were fixed:* A remote attacker could cause a denial of service through a NULL pointer dereference and crash via an empty attribute list in a deref control in a search request. (bnc#916897 CVE-2015-1545)* A remote attacker could cause a denial of service (crash) via a crafted search query with a matched values control. (bnc#916914 CVE-2015-1546)The following non-security issue was fixed:* Prevent connection-0 (internal connection) from showing up in the monitor backend (bnc#905959) Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2015-1545 CVE-2015-1546 SUSE-SU-2015:1077-1 Platform(s): SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Server 12 Product(s): openldap2 Definition Synopsis SUSE Linux Enterprise Server 12 and SUSE Linux Enterprise Desktop 12 release section Operation system section SUSE Linux Enterprise Server 12 is installed OR SUSE Linux Enterprise Desktop 12 is installed AND Packages match section libldap-2_4-2 is earlier than 0:2.4.39-16.1 OR libldap-2_4-2-32bit is earlier than 0:2.4.39-16.1 OR libldap-2_4-2-debuginfo is earlier than 0:2.4.39-16.1 OR libldap-2_4-2-debuginfo-32bit is earlier than 0:2.4.39-16.1 OR openldap2-client is earlier than 0:2.4.39-16.1 OR openldap2-client-debuginfo is earlier than 0:2.4.39-16.1 OR openldap2-client-debugsource is earlier than 0:2.4.39-16.1 SUSE Linux Enterprise Server 12 release section SUSE Linux Enterprise Server 12 is installed AND Packages match section openldap2 is earlier than 0:2.4.39-16.1 OR openldap2-back-meta is earlier than 0:2.4.39-16.1 OR openldap2-back-meta-debuginfo is earlier than 0:2.4.39-16.1 OR openldap2-debuginfo is earlier than 0:2.4.39-16.1 OR openldap2-debugsource is earlier than 0:2.4.39-16.1
BACK