Oval Definition:	oval:org.opensuse.security:def:50458
Revision Date: 2020-12-01 Version: 1 Title: Security update for openldap2 (Moderate) Description: This update for openldap2 fixes the following issues: Security issue fixed: - CVE-2019-13565: Fixed an authentication bypass when using SASL authentication and session encryption (bsc#1143194). - CVE-2019-13057: Fixed an issue with delegated database admin privileges (bsc#1143273). - CVE-2017-17740: When both the nops module and the member of overlay are enabled, attempts to free a buffer that was allocated on the stack, which allows remote attackers to cause a denial of service (slapd crash) via a member MODDN operation. (bsc#1073313) Non-security issues fixed: - Fixed broken shebang line in openldap_update_modules_path.sh (bsc#1114845). - Create files in /var/lib/ldap/ during initial start to allow for transactional updates (bsc#1111388) - Fixed incorrect post script call causing tmpfiles creation not to be run (bsc#1111388). Family: unix Class: patch Status: Reference(s): 1033084 1033085 1033086 1033087 1033088 1033089 1033090 1046540 1050319 1050536 1050540 1050549 1051510 1052904 1053043 1055117 1055120 1055121 1061210 1061840 1065600 1065729 1066674 1067126 1067906 1070872 1073313 1076830 1079524 1082555 1083647 1084760 1084831 1085535 1085536 1086283 1086288 1088804 1094244 1094825 1095805 1097583 1097584 1097585 1097586 1097587 1097588 1099125 1100132 1102881 1103259 1103308 1103320 1103543 1104731 1105025 1105173 1105536 1106105 1106110 1106237 1106240 1106390 1106838 1107066 1107067 1107685 1108241 1108377 1108468 1108828 1108841 1108870 1109151 1109158 1109217 1109330 1109739 1109784 1109806 1109818 1109907 1109911 1109915 1109919 1109951 1110006 1110096 1110538 1110561 1110921 1111028 1111076 1111331 1111388 1111506 1111806 1111819 1111830 1111834 1111841 1111870 1111901 1111904 1111928 1111973 1111983 1112128 1112170 1112173 1112178 1112208 1112219 1112221 1112246 1112294 1112372 1112514 1112554 1112578 1112708 1112710 1112711 1112712 1112713 1112723 1112726 1112731 1112732 1112733 1112734 1112735 1112736 1112738 1112739 1112740 1112741 1112743 1112745 1112746 1112894 1112899 1112902 1112903 1112905 1112906 1112907 1113245 1113257 1113284 1113399 1113700 1113722 1114279 1114542 1114638 1114845 1115015 1115022 1115025 1119086 1119680 1120307 1120318 1120902 1122767 1123105 1123685 1124628 1125007 1125342 1126221 1126356 1126704 1126740 1127175 1127371 1127372 1127374 1127378 1127445 1128415 1128544 1129276 1129770 1130130 1130154 1130195 1130335 1130336 1130337 1130338 1130425 1130427 1130518 1130527 1130567 1131062 1131107 1131167 1131168 1131169 1131170 1131171 1131172 1131173 1131174 1131175 1131176 1131177 1131178 1131179 1131180 1131290 1131335 1131336 1131416 1131427 1131442 1131467 1131574 1131587 1131659 1131673 1131847 1131848 1131851 1131900 1131934 1131935 1132083 1132219 1132226 1132227 1132365 1132368 1132369 1132370 1132372 1132373 1132384 1132397 1132402 1132403 1132404 1132405 1132407 1132411 1132412 1132413 1132414 1132426 1132527 1132531 1132555 1132558 1132561 1132562 1132563 1132564 1132570 1132571 1132572 1132589 1132618 1132681 1132726 1132828 1132943 1133005 1133094 1133095 1133115 1133149 1133486 1133529 1133584 1133667 1133668 1133672 1133674 1133675 1133698 1133702 1133731 1133769 1133772 1133774 1133778 1133779 1133780 1133825 1133850 1133851 1133852 1141122 1143194 1143273 1144522 1145575 1145738 1145739 1145740 1145741 1145742 1152684 1153108 1154036 1154037 1156317 1156321 1157004 1157119 1157770 1160673 1160922 1163985 1169978 1171999 1173258 CVE-2017-16533 CVE-2017-17740 CVE-2017-18224 CVE-2017-7607 CVE-2017-7608 CVE-2017-7609 CVE-2017-7610 CVE-2017-7611 CVE-2017-7612 CVE-2017-7613 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-16062 CVE-2018-16402 CVE-2018-16403 CVE-2018-16843 CVE-2018-16844 CVE-2018-16845 CVE-2018-16880 CVE-2018-18310 CVE-2018-18386 CVE-2018-18445 CVE-2018-18520 CVE-2018-18521 CVE-2019-10081 CVE-2019-10082 CVE-2019-10092 CVE-2019-10097 CVE-2019-10098 CVE-2019-10220 CVE-2019-11048 CVE-2019-11091 CVE-2019-13057 CVE-2019-13272 CVE-2019-13565 CVE-2019-15239 CVE-2019-17594 CVE-2019-17595 CVE-2019-18904 CVE-2019-3825 CVE-2019-3882 CVE-2019-7150 CVE-2019-7665 CVE-2019-9003 CVE-2019-9500 CVE-2019-9503 CVE-2019-9517 CVE-2019-9853 CVE-2020-1720 CVE-2020-8903 CVE-2020-8907 CVE-2020-8933 SUSE-SU-2018:3593-1 SUSE-SU-2019:0334-1 SUSE-SU-2019:0527-1 SUSE-SU-2019:1486-1 SUSE-SU-2019:2237-1 SUSE-SU-2019:2395-1 SUSE-SU-2019:2997-1 SUSE-SU-2019:3090-1 SUSE-SU-2019:3230-1 SUSE-SU-2020:0260-1 SUSE-SU-2020:0278-1 SUSE-SU-2020:0589-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.3.0esr-0.8 is installed OR MozillaFirefox-translations-31.3.0esr-0.8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.548-0.26 is installed OR flash-player-gnome-11.2.202.548-0.26 is installed OR flash-player-kde4-11.2.202.548-0.26 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libfreebl3-3.16.4-5 is installed OR libfreebl3-32bit-3.16.4-5 is installed OR libsoftokn3-3.16.4-5 is installed OR libsoftokn3-32bit-3.16.4-5 is installed OR mozilla-nss-3.16.4-5 is installed OR mozilla-nss-32bit-3.16.4-5 is installed OR mozilla-nss-certs-3.16.4-5 is installed OR mozilla-nss-certs-32bit-3.16.4-5 is installed OR mozilla-nss-tools-3.16.4-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information bind-libs-9.9.6P1-30 is installed OR bind-libs-32bit-9.9.6P1-30 is installed OR bind-utils-9.9.6P1-30 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information NetworkManager-1.0.12-8 is installed OR NetworkManager-lang-1.0.12-8 is installed OR libnm-glib-vpn1-1.0.12-8 is installed OR libnm-glib4-1.0.12-8 is installed OR libnm-util2-1.0.12-8 is installed OR libnm0-1.0.12-8 is installed OR typelib-1_0-NM-1_0-1.0.12-8 is installed OR typelib-1_0-NMClient-1_0-1.0.12-8 is installed OR typelib-1_0-NetworkManager-1_0-1.0.12-8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND fetchmail-6.3.26-12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gwenhywfar-lang-4.9.0beta-3.3 is installed OR gwenhywfar-tools-4.9.0beta-3.3 is installed OR libgwengui-gtk2-0-4.9.0beta-3.3 is installed OR libgwenhywfar60-4.9.0beta-3.3 is installed OR libgwenhywfar60-plugins-4.9.0beta-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information libldap-2_4-2-2.4.46-9.19 is installed OR libldap-2_4-2-32bit-2.4.46-9.19 is installed OR openldap2-2.4.46-9.19 is installed OR openldap2-client-2.4.46-9.19 is installed OR openldap2-devel-2.4.46-9.19 is installed OR openldap2-devel-static-2.4.46-9.19 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-150.17 is installed OR reiserfs-kmp-default-4.12.14-150.17 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.25 is installed OR kernel-default-livepatch-4.12.14-25.25 is installed OR kernel-livepatch-4_12_14-25_25-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_7-1-1.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-6-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-6-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information gdm-3.26.2.1-13.19 is installed OR gdm-branding-upstream-3.26.2.1-13.19 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information elfutils-0.168-4.5 is installed OR libasm1-32bit-0.168-4.5 is installed OR libelf-devel-32bit-0.168-4.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information google-compute-engine-20190801-4.38 is installed OR google-compute-engine-oslogin-32bit-20190801-4.38 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information rmt-server-2.5.2-3.9 is installed OR rmt-server-pubcloud-2.5.2-3.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND nginx-1.14.2-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information util-linux-systemd-2.33.1-4.5 is installed OR uuidd-2.33.1-4.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs10-10.16.0-1.9 is installed OR nodejs10-devel-10.16.0-1.9 is installed OR nodejs10-docs-10.16.0-1.9 is installed OR npm10-10.16.0-1.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information openvswitch-2.1.2-4.5 is installed OR openvswitch-kmp-default-2.1.2_k3.12.49_11-4.5 is installed OR openvswitch-kmp-xen-2.1.2_k3.12.49_11-4.5 is installed OR openvswitch-switch-2.1.2-4.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_32-default-4-3 is installed OR kgraft-patch-3_12_69-60_64_32-xen-4-3 is installed OR kgraft-patch-SLE12-SP1_Update_13-4-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND autofs-5.0.9-21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_92-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_24-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libHX28-3.18-1 is installed OR libHX28-32bit-3.18-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND mailman-2.1.17-3.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kernel-default-4.4.180-94.103 is installed OR kernel-default-base-4.4.180-94.103 is installed OR kernel-default-devel-4.4.180-94.103 is installed OR kernel-default-man-4.4.180-94.103 is installed OR kernel-devel-4.4.180-94.103 is installed OR kernel-macros-4.4.180-94.103 is installed OR kernel-source-4.4.180-94.103 is installed OR kernel-syms-4.4.180-94.103 is installed OR kgraft-patch-4_4_180-94_103-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_28-1-4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libpython3_4m1_0-3.4.6-25.21 is installed OR python3-3.4.6-25.21 is installed OR python3-base-3.4.6-25.21 is installed OR python3-curses-3.4.6-25.21 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libvpx-1.6.1-6.3 is installed OR libvpx4-1.6.1-6.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information ffmpeg-3.4.2-4.12 is installed OR libavcodec-devel-3.4.2-4.12 is installed OR libavformat-devel-3.4.2-4.12 is installed OR libavformat57-3.4.2-4.12 is installed OR libavresample-devel-3.4.2-4.12 is installed OR libavresample3-3.4.2-4.12 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-68.2.1-3.58 is installed OR MozillaThunderbird-translations-common-68.2.1-3.58 is installed OR MozillaThunderbird-translations-other-68.2.1-3.58 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information MozillaFirefox-52.5.0esr-109.9 is installed OR MozillaFirefox-devel-52.5.0esr-109.9 is installed OR MozillaFirefox-translations-52.5.0esr-109.9 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libpython3_4m1_0-3.4.6-25.29 is installed OR python3-3.4.6-25.29 is installed OR python3-base-3.4.6-25.29 is installed OR python3-curses-3.4.6-25.29 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR libwebkit2gtk3-lang-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed
BACK