Oval Definition:	oval:org.opensuse.security:def:202144227
Revision Date: 2022-09-02 Version: 1 Title: CVE-2021-44227 Description: In GNU Mailman before 2.1.38, a list member or moderator can get a CSRF token and craft an admin request (using that token) to set a new admin password or make other changes. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2021-44227 SUSE CVE-2021-44227 SUSE-SU-2022:1886-1 Platform(s): SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP1 is installed OR SUSE Linux Enterprise Server 11 SP3 is installed AND mailman is affected Definition Synopsis Release Information SUSE OpenStack Cloud 8 is installed OR SUSE OpenStack Cloud Crowbar 8 is installed AND mailman is affected Definition Synopsis Release Information SUSE OpenStack Cloud 9 is installed OR SUSE OpenStack Cloud Crowbar 9 is installed AND mailman is affected Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND mailman-2.1.17-3.26.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND mailman-2.1.17-3.26.1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND mailman-2.1.17-3.26.1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND mailman-2.1.17-3.26.1 is installed
BACK