| Revision Date: | 2019-04-11 | Version: | 1 |
| Title: | Security update for openldap2 (Important) |
| Description: |
This update for openldap2 fixes the following issues:
Security issues fixed:
- CVE-2017-9287: A double free vulnerability in the mdb backend during search with page size 0 was fixed (bsc#1041764). - CVE-2017-17740: Fixed a denial of service (slapd crash) via a member MODDN operation that could have been triggered when both the nops module and the memberof overlay are enabled (bsc#1073313).
Non-security issues fixed:
- Fix a regression in handling of non-blocking connections (bsc#1031702) - Fix an uninitialised variable that causes startup failure (bsc#1037396) - Fix libldap leaks socket descriptors issue (bsc#1065083)
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1031702
1037396
1041764
1065083
1073313
CVE-2017-17740
CVE-2017-9287
SUSE-SU-2019:0931-1
|
| Platform(s): | SUSE Linux Enterprise Server for SAP Applications 12 SP4
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND compat-libldap-2_3-0-2.3.37-18.24.9.7 is installed
|