Oval Definition:oval:org.opensuse.security:def:100762
Revision Date:2022-03-07Version:1
Title: (Important)
Description:

This update for cyrus-sasl fixes the following issues:

- CVE-2022-24407: Fixed SQL injection in sql_auxprop_store in plugins/sql.c (bsc#1196036).

The following non-security bugs were fixed:

- postfix: sasl authentication with password fails (bsc#1194265).
Family:unixClass:patch
Status:Reference(s):1194265
1196036
CVE-2012-2812
CVE-2012-2813
CVE-2012-2814
CVE-2012-2836
CVE-2012-2837
CVE-2012-2840
CVE-2012-2841
CVE-2016-6328
CVE-2017-7544
CVE-2018-20030
CVE-2019-9278
CVE-2022-24407
Platform(s):Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Desktop Applications 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • AND Package Information
  • libexif-devel-0.6.21-5.3.1 is installed
  • OR libexif12-0.6.21-5.3.1 is installed
    • Definition Synopsis
  • Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE is installed
  • AND Package Information
  • cyrus-sasl-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-digestmd5-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-gssapi-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-plain-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-saslauthd-2.1.27-150300.4.6.1 is installed
  • OR libsasl2-3-2.1.27-150300.4.6.1 is installed
    • BACK