Oval Definition:	oval:org.opensuse.security:def:50774
Revision Date: 2020-12-01 Version: 1 Title: Security update for openldap2 (Important) Description: This update for openldap2 fixes the following issues: - CVE-2020-8023: Fixed a potential local privilege escalation from ldap to root when OPENLDAP_CONFIG_BACKEND='ldap' was used (bsc#1172698). - Changed DB_CONFIG to root:ldap permissions (bsc#1172704). Family: unix Class: patch Status: Reference(s): 1027282 1041090 1042670 1058115 1065600 1065729 1068664 1071995 1073269 1073748 1078326 1078485 1079300 1081750 1083507 1083548 1084650 1085030 1086001 1088004 1088009 1100352 1109847 1109961 1111666 1111793 1112178 1113755 1113956 1120163 1122191 1129346 1129452 1129715 1130840 1130847 1133021 1136020 1136666 1137526 1138459 1141853 1144333 1149792 1149841 1149955 1151021 1152148 1153238 1153830 1154064 1159035 1160922 1160968 1162296 1162972 1163368 1163524 1165548 1165629 1166916 1166965 1167462 1168554 1169365 1169511 1169790 1170232 1170557 1171558 1171688 1171988 1172073 1172108 1172247 1172418 1172428 1172442 1172443 1172515 1172698 1172704 1172871 1172872 1172873 1172963 1173060 1173485 1173798 1173954 1174003 1174026 1174070 1174205 1174387 1174484 1174547 1174549 1174550 1174625 1174658 1174685 1174689 1174699 1174734 1174757 1174771 1174840 1174841 1174843 1174844 1174845 1174852 1174873 1174904 1174926 1174968 1175062 1175063 1175064 1175065 1175066 1175067 1175112 1175127 1175128 1175149 1175199 1175213 1175228 1175232 1175284 1175393 1175394 1175396 1175397 1175398 1175399 1175400 1175401 1175402 1175403 1175404 1175405 1175406 1175407 1175408 1175409 1175410 1175411 1175412 1175413 1175414 1175415 1175416 1175417 1175418 1175419 1175420 1175421 1175422 1175423 1175440 1175493 1175515 1175518 1175526 1175550 1175654 1175666 1175667 1175668 1175669 1175670 1175691 1175767 1175768 1175769 1175770 1175771 1175772 1175786 1175873 1176069 1176315 1176631 214983 298378 346490 367853 379534 380942 399190 406051 425138 426563 430761 432677 436966 437293 441088 462375 525295 534721 551715 572673 577032 581765 603255 617751 637176 638233 658604 673071 682554 697251 707667 718009 747125 747794 751718 754447 766778 794139 804978 827982 831442 834601 836739 856835 856836 857470 863741 885882 898572 901715 935856 945401 964182 984751 985177 985348 989523 997436 CVE-2007-2052 CVE-2008-1721 CVE-2008-2315 CVE-2008-2316 CVE-2008-3142 CVE-2008-3143 CVE-2008-3144 CVE-2011-1521 CVE-2011-3389 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2013-1752 CVE-2013-1753 CVE-2013-4238 CVE-2014-1912 CVE-2014-4650 CVE-2014-7185 CVE-2016-0772 CVE-2016-1000110 CVE-2016-5636 CVE-2016-5699 CVE-2017-1000158 CVE-2017-18207 CVE-2018-1000030 CVE-2018-1000802 CVE-2018-1060 CVE-2018-1061 CVE-2018-11763 CVE-2018-13301 CVE-2018-14647 CVE-2018-20852 CVE-2019-10160 CVE-2019-12730 CVE-2019-14835 CVE-2019-15043 CVE-2019-16056 CVE-2019-16935 CVE-2019-17542 CVE-2019-18904 CVE-2019-4732 CVE-2019-5010 CVE-2019-9636 CVE-2019-9718 CVE-2019-9947 CVE-2019-9948 CVE-2020-10135 CVE-2020-11080 CVE-2020-12245 CVE-2020-13379 CVE-2020-14314 CVE-2020-14331 CVE-2020-14356 CVE-2020-14386 CVE-2020-16166 CVE-2020-1749 CVE-2020-17507 CVE-2020-24394 CVE-2020-2583 CVE-2020-2593 CVE-2020-2604 CVE-2020-2659 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2767 CVE-2020-2773 CVE-2020-2778 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2816 CVE-2020-2830 CVE-2020-6796 CVE-2020-6797 CVE-2020-6798 CVE-2020-6799 CVE-2020-6800 CVE-2020-7598 CVE-2020-8023 CVE-2020-8174 SUSE-SU-2018:3101-1 SUSE-SU-2019:3184-2 SUSE-SU-2020:0234-1 SUSE-SU-2020:0383-1 SUSE-SU-2020:0466-1 SUSE-SU-2020:1177-1 SUSE-SU-2020:1179-1 SUSE-SU-2020:1576-1 SUSE-SU-2020:1856-1 SUSE-SU-2020:2792-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libvirt-0.9.6-0.29 is installed OR libvirt-client-0.9.6-0.29 is installed OR libvirt-client-32bit-0.9.6-0.29 is installed OR libvirt-doc-0.9.6-0.29 is installed OR libvirt-python-0.9.6-0.29 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND wireshark-1.12.9-0.12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information bind-libs-9.9.5P1-1 is installed OR bind-libs-32bit-9.9.5P1-1 is installed OR bind-utils-9.9.5P1-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ghostscript-9.15-6 is installed OR ghostscript-x11-9.15-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cups-pk-helper-0.2.5-5 is installed OR cups-pk-helper-lang-0.2.5-5 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information ffmpeg-3.4.2-4.27 is installed OR libavdevice57-3.4.2-4.27 is installed OR libavfilter6-3.4.2-4.27 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information libldap-2_4-2-2.4.46-9.31 is installed OR libldap-2_4-2-32bit-2.4.46-9.31 is installed OR libldap-data-2.4.46-9.31 is installed OR openldap2-2.4.46-9.31 is installed OR openldap2-client-2.4.46-9.31 is installed OR openldap2-devel-2.4.46-9.31 is installed OR openldap2-devel-static-2.4.46-9.31 is installed OR openldap2-ppolicy-check-password-1.2-9.31 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_27-default-2-2 is installed OR kernel-livepatch-SLE15_Update_12-2-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.56 is installed OR kernel-default-livepatch-4.12.14-197.56 is installed OR kernel-default-livepatch-devel-4.12.14-197.56 is installed OR kernel-livepatch-4_12_14-197_56-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_15-1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information java-11-openjdk-11.0.7.0-3.42 is installed OR java-11-openjdk-accessibility-11.0.7.0-3.42 is installed OR java-11-openjdk-javadoc-11.0.7.0-3.42 is installed OR java-11-openjdk-jmods-11.0.7.0-3.42 is installed OR java-11-openjdk-src-11.0.7.0-3.42 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information grafana-7.0.3-3.3 is installed OR grafana-piechart-panel-1.4.0-3.3 is installed OR grafana-status-panel-1.0.9-3.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information apache2-2.4.33-3.6 is installed OR apache2-devel-2.4.33-3.6 is installed OR apache2-doc-2.4.33-3.6 is installed OR apache2-prefork-2.4.33-3.6 is installed OR apache2-utils-2.4.33-3.6 is installed OR apache2-worker-2.4.33-3.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.17.0-3.32 is installed OR nodejs8-devel-8.17.0-3.32 is installed OR nodejs8-docs-8.17.0-3.32 is installed OR npm8-8.17.0-3.32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND cifs-utils-6.4-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_62-60_64_8-default-10-2 is installed OR kgraft-patch-3_12_62-60_64_8-xen-10-2 is installed OR kgraft-patch-SLE12-SP1_Update_8-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND ucode-intel-20180703-13.25 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_162-94_69-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information perl-5.18.2-12.20 is installed OR perl-32bit-5.18.2-12.20 is installed OR perl-base-5.18.2-12.20 is installed OR perl-doc-5.18.2-12.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information gdm-3.10.0.1-54.6 is installed OR gdm-lang-3.10.0.1-54.6 is installed OR gdmflexiserver-3.10.0.1-54.6 is installed OR libgdm1-3.10.0.1-54.6 is installed OR typelib-1_0-Gdm-1_0-3.10.0.1-54.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libneon27-0.30.0-3 is installed OR libneon27-32bit-0.30.0-3 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.5-3.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.5-3.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr6.5-3.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.5-3.33 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information rpmlint-1.10-7.12 is installed OR rpmlint-mini-1.10-5.12 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND icedtea-web-1.7.2-3.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information dia-0.97.3-4.3 is installed OR dia-lang-0.97.3-4.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND ucode-intel-20180425-13.20 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND clamav-0.100.3-33.26 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libmariadb3-3.0.3-3.3 is installed OR mariadb-10.2.15-4.3 is installed OR mariadb-client-10.2.15-4.3 is installed OR mariadb-connector-c-3.0.3-3.3 is installed OR mariadb-errormessages-10.2.15-4.3 is installed OR mariadb-galera-10.2.15-4.3 is installed OR mariadb-tools-10.2.15-4.3 is installed OR xtrabackup-2.4.10-4.3 is installed
BACK