Oval Definition:	oval:org.opensuse.security:def:20214091
Revision Date: 2022-09-02 Version: 1 Title: CVE-2021-4091 Description: A double-free was found in the way 389-ds-base handles virtual attributes context in persistent searches. An attacker could send a series of search requests, forcing the server to behave unexpectedly, and crash. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2021-4091 SUSE CVE-2021-4091 SUSE-SU-2022:2081-1 SUSE-SU-2022:2105-1 SUSE-SU-2022:2109-1 SUSE-SU-2022:2163-1 SUSE-CU-2022:1415-1 SUSE-SU-2022:2295-1 Platform(s): SUSE CaaS Platform 4.0 SUSE Enterprise Storage 7 SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise High Performance Computing 15 SP4 SUSE Linux Enterprise Module for Server Applications 15 SP3 SUSE Linux Enterprise Module for Server Applications 15 SP4 SUSE Linux Enterprise Real Time 15 SP2 SUSE Linux Enterprise Server 15 SP2-BCL SUSE Linux Enterprise Server 15 SP2-LTSS SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server 15 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP4 SUSE Linux Enterprise Storage 7.1 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.1 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.1 SUSE Manager Server 4.2 SUSE Manager Server 4.3 Product(s): Definition Synopsis Release Information SUSE Linux Enterprise Real Time 15 SP2 is installed AND 389-ds is affected OR Package Information SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS is installed OR SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS is installed AND 389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR 389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR Package Information SUSE Linux Enterprise Server 15 SP2-BCL is installed AND 389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR 389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR Package Information SUSE Linux Enterprise Server 15 SP2-LTSS is installed AND 389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR 389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed AND 389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR 389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed Definition Synopsis Release Information SUSE CaaS Platform 4.0 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed AND Package Information 389-ds is affected OR 389-ds-devel is affected OR 389-ds-snmp is affected OR lib389 is affected OR libsvrcore0 is affected Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed AND Package Information 389-ds is affected OR 389-ds-devel is affected OR 389-ds-snmp is affected OR lib389 is affected OR libsvrcore0 is affected Definition Synopsis Release Information SUSE Linux Enterprise Real Time 15 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed OR SUSE Manager Proxy 4.1 is installed OR SUSE Manager Retail Branch Server 4.1 is installed OR SUSE Manager Server 4.1 is installed AND Package Information 389-ds is affected OR 389-ds-devel is affected OR lib389 is affected OR libsvrcore0 is affected Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Server Applications 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND Package Information 389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1 is installed OR 389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1 is installed OR lib389-1.4.4.19~git38.9951c1101-150300.3.17.1 is installed OR libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1 is installed Definition Synopsis Release Information SUSE Enterprise Storage 7 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Server Applications 15 SP3 is installed OR SUSE Linux Enterprise Real Time 15 SP2 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND Package Information 389-ds is affected OR 389-ds-devel is affected OR lib389 is affected OR libsvrcore0 is affected Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 15 SP4 is installed OR SUSE Linux Enterprise Module for Server Applications 15 SP4 is installed OR SUSE Linux Enterprise Server 15 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed OR SUSE Manager Proxy 4.3 is installed OR SUSE Manager Retail Branch Server 4.3 is installed OR SUSE Manager Server 4.3 is installed AND Package Information 389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1 is installed OR 389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1 is installed OR lib389-2.0.15~git26.1ea6a6803-150400.3.5.1 is installed OR libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS is installed OR SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS is installed AND 389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR 389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR Package Information SUSE Linux Enterprise Server 15 SP2-BCL is installed AND 389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR 389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR Package Information SUSE Linux Enterprise Server 15 SP2-LTSS is installed AND 389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR 389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed AND 389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR 389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed OR libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1 is installed
BACK