Oval Definition:	oval:org.opensuse.security:def:4785
Revision Date: 2020-12-02 Version: 1 Title: Security update for 389-ds (Important) Description: This update for 389-ds to version 1.4.0.26 fixes the following issues: Security issues fixed: - CVE-2016-5416: Fixed an information disclosure where a anonymous user could read the default ACI (bsc#991201). - CVE-2018-1054: Fixed a denial of service via search filters in SetUnicodeStringFromUTF_8() (bsc#1083689). - CVE-2018-1089: Fixed a buffer overflow via large filter value (bsc#1092187). - CVE-2018-10871: Fixed an information disclosure in certain plugins leading to the disclosure of plaintext password to an privileged attackers (bsc#1099465). - CVE-2018-14638: Fixed a denial of service through a crash in delete_passwdPolicy () (bsc#1108674). - CVE-2018-14648: Fixed a denial of service caused by malformed values in search queries (bsc#1109609). - CVE-2018-10935: Fixed a denial of service related to ldapsearch with server side sort (bsc#1105606). - CVE-2019-3883: Fixed a denial of service caused by hanging LDAP requests over TLS (bsc#1132385). Family: unix Class: patch Status: Reference(s): 1013708 1013712 1013893 1015171 1047962 1049826 1053177 1065022 1083689 1092187 1099019 1099465 1102261 1105606 1108674 1109609 1110542 1111319 1112911 1113296 1114908 1115015 1115022 1115025 1115341 1116840 1118758 1119105 1119373 1119820 1119873 1120189 1120263 1120463 1120629 1120630 1120631 1121611 1122062 1122471 1122983 1123137 1123681 1123843 1123865 1123967 1124897 1125415 1127026 1127155 1127220 1130161 1131823 1132385 1135749 1137977 1141122 1144797 1157119 1159819 1160673 1160922 1167462 1169511 1169679 1169746 1169748 1171441 1171443 1171444 1171445 1171446 1171447 1171474 1171978 1172698 1172704 1173027 1173247 1173605 1174200 1174230 1176384 1176756 1176899 1177409 1177412 1177413 1177414 1177977 663358 764147 965786 978193 991201 993025 CVE-2007-4129 CVE-2009-0758 CVE-2010-2244 CVE-2011-1002 CVE-2016-5416 CVE-2016-5824 CVE-2016-9797 CVE-2016-9798 CVE-2016-9802 CVE-2016-9917 CVE-2018-1054 CVE-2018-10871 CVE-2018-1089 CVE-2018-10935 CVE-2018-12405 CVE-2018-14638 CVE-2018-14648 CVE-2018-16843 CVE-2018-16844 CVE-2018-16845 CVE-2018-17466 CVE-2018-18492 CVE-2018-18493 CVE-2018-18494 CVE-2018-18498 CVE-2018-18500 CVE-2018-18501 CVE-2018-18505 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2019-17006 CVE-2019-18904 CVE-2019-3883 CVE-2020-11017 CVE-2020-11018 CVE-2020-11019 CVE-2020-11038 CVE-2020-11039 CVE-2020-11040 CVE-2020-11041 CVE-2020-11043 CVE-2020-11085 CVE-2020-11086 CVE-2020-11087 CVE-2020-11088 CVE-2020-11089 CVE-2020-11095 CVE-2020-11096 CVE-2020-11097 CVE-2020-11098 CVE-2020-11099 CVE-2020-11521 CVE-2020-11522 CVE-2020-11523 CVE-2020-11524 CVE-2020-11525 CVE-2020-11526 CVE-2020-12399 CVE-2020-13396 CVE-2020-13397 CVE-2020-13398 CVE-2020-15673 CVE-2020-15676 CVE-2020-15677 CVE-2020-15678 CVE-2020-15683 CVE-2020-15969 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2767 CVE-2020-27670 CVE-2020-27671 CVE-2020-27672 CVE-2020-27673 CVE-2020-2773 CVE-2020-2778 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2816 CVE-2020-2830 CVE-2020-4030 CVE-2020-4031 CVE-2020-4032 CVE-2020-4033 CVE-2020-8023 CVE-2020-8177 SUSE-SU-2019:0334-1 SUSE-SU-2019:0338-1 SUSE-SU-2019:1353-2 SUSE-SU-2019:2030-1 SUSE-SU-2019:2155-1 SUSE-SU-2020:0260-1 SUSE-SU-2020:1511-1 SUSE-SU-2020:1677-1 SUSE-SU-2020:1773-1 SUSE-SU-2020:1856-1 SUSE-SU-2020:2032-1 SUSE-SU-2020:3052-1 SUSE-SU-2020:3091-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information avahi-0.6.31-20 is installed OR avahi-lang-0.6.31-20 is installed OR libavahi-client3-0.6.31-20 is installed OR libavahi-client3-32bit-0.6.31-20 is installed OR libavahi-common3-0.6.31-20 is installed OR libavahi-common3-32bit-0.6.31-20 is installed OR libavahi-core7-0.6.31-20 is installed OR libdns_sd-0.6.31-20 is installed OR libdns_sd-32bit-0.6.31-20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-9 is installed OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information elfutils-0.158-6 is installed OR libasm1-0.158-6 is installed OR libdw1-0.158-6 is installed OR libdw1-32bit-0.158-6 is installed OR libebl1-0.158-6 is installed OR libebl1-32bit-0.158-6 is installed OR libelf1-0.158-6 is installed OR libelf1-32bit-0.158-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information bash-4.3-83.15 is installed OR bash-doc-4.3-83.15 is installed OR bash-lang-4.3-83.15 is installed OR libreadline6-6.3-83.15 is installed OR libreadline6-32bit-6.3-83.15 is installed OR readline-doc-6.3-83.15 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND haproxy-1.5.4-2.4.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information libpcreposix0-8.39-7.1 is installed OR pcre-8.39-7.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND ctdb-4.6.16+git.124.aee309c5c18-3.32 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND ctdb-4.10.5+git.129.35f7bb6e177-1 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information ImageMagick-config-6-SUSE-6.8.8.1-71.126 is installed OR ImageMagick-config-6-upstream-6.8.8.1-71.126 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.126 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.126 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_32-33-default-2-3.1 is installed OR kgraft-patch-3_12_32-33-xen-2-3.1 is installed OR kgraft-patch-3_12_36-38-default-2-3.1 is installed OR kgraft-patch-3_12_36-38-xen-2-3.1 is installed OR kgraft-patch-SLE12_Update_1-2-3.1 is installed OR kgraft-patch-SLE12_Update_2-2-3.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information 389-ds-1.4.0.26~git0.8a2d3de6f-4.14 is installed OR 389-ds-devel-1.4.0.26~git0.8a2d3de6f-4.14 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND wpa_supplicant-2.6-15.10 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information cyrus-imapd-2.3.11-60.65.64.1 is installed OR perl-Cyrus-IMAP-2.3.11-60.65.64.1 is installed OR perl-Cyrus-SIEVE-managesieve-2.3.11-60.65.64.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND bind-9.9.6P1-0.12.1 is installed OR bind-chrootenv-9.9.6P1-0.12.1 is installed OR bind-doc-9.9.6P1-0.12.1 is installed OR bind-libs-9.9.6P1-0.12.1 is installed OR bind-libs-32bit-9.9.6P1-0.12.1 is installed OR bind-libs-x86-9.9.6P1-0.12.1 is installed OR bind-utils-9.9.6P1-0.12.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND bind-9.9.6P1-0.12.1 is installed OR bind-chrootenv-9.9.6P1-0.12.1 is installed OR bind-doc-9.9.6P1-0.12.1 is installed OR bind-libs-9.9.6P1-0.12.1 is installed OR bind-libs-32bit-9.9.6P1-0.12.1 is installed OR bind-libs-x86-9.9.6P1-0.12.1 is installed OR bind-utils-9.9.6P1-0.12.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information avahi-0.6.23-11.30.4 is installed OR avahi-lang-0.6.23-11.30.4 is installed OR avahi-utils-0.6.23-11.30.4 is installed OR libavahi-client3-0.6.23-11.30.4 is installed OR libavahi-client3-32bit-0.6.23-11.30.4 is installed OR libavahi-client3-x86-0.6.23-11.30.4 is installed OR libavahi-common3-0.6.23-11.30.4 is installed OR libavahi-common3-32bit-0.6.23-11.30.4 is installed OR libavahi-common3-x86-0.6.23-11.30.4 is installed OR libavahi-core5-0.6.23-11.30.4 is installed OR libdns_sd-0.6.23-11.30.4 is installed OR libdns_sd-32bit-0.6.23-11.30.4 is installed OR libdns_sd-x86-0.6.23-11.30.4 is installed Definition Synopsis SUSE Linux Enterprise Server 11-SECURITY is installed AND Package Information libldap-openssl1-2_4-2-2.4.26-0.35.1 is installed OR libldap-openssl1-2_4-2-32bit-2.4.26-0.35.1 is installed OR libldap-openssl1-2_4-2-x86-2.4.26-0.35.1 is installed OR openldap2-client-openssl1-2.4.26-0.35.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information file-5.19-9.1 is installed OR file-magic-5.19-9.1 is installed OR libmagic1-5.19-9.1 is installed OR libmagic1-32bit-5.19-9.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND libmodplug1-0.8.8.4-13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information apache2-2.4.10-14.17.1 is installed OR apache2-doc-2.4.10-14.17.1 is installed OR apache2-example-pages-2.4.10-14.17.1 is installed OR apache2-prefork-2.4.10-14.17.1 is installed OR apache2-utils-2.4.10-14.17.1 is installed OR apache2-worker-2.4.10-14.17.1 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information java-11-openjdk-11.0.7.0-3.42 is installed OR java-11-openjdk-demo-11.0.7.0-3.42 is installed OR java-11-openjdk-devel-11.0.7.0-3.42 is installed OR java-11-openjdk-headless-11.0.7.0-3.42 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information libblkid-devel-2.19.1-6.62.1 is installed OR libblkid-devel-32bit-2.19.1-6.62.1 is installed OR libuuid-devel-2.19.1-6.62.1 is installed OR libuuid-devel-32bit-2.19.1-6.62.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information GraphicsMagick-1.2.5-4.46.1 is installed OR libGraphicsMagick2-1.2.5-4.46.1 is installed OR perl-GraphicsMagick-1.2.5-4.46.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information kernel-docs-3.12.28-4 is installed OR kernel-obs-build-3.12.28-4 is installed OR kernel-zfcpdump-3.12.28-4 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information DirectFB-devel-1.7.1-4 is installed OR lib++dfb-devel-1.7.1-4 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information FastCGI-2.4.0-167 is installed OR perl-FastCGI-2.4.0-167 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information PackageKit-1.1.10-4.10 is installed OR PackageKit-gstreamer-plugin-1.1.10-4.10 is installed OR PackageKit-gtk3-module-1.1.10-4.10 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information bluez-5.48-5.16 is installed OR bluez-cups-5.48-5.16 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information MozillaThunderbird-78.4.0-3.99 is installed OR MozillaThunderbird-translations-common-78.4.0-3.99 is installed OR MozillaThunderbird-translations-other-78.4.0-3.99 is installed
BACK