Oval Definition:	oval:org.opensuse.security:def:51174
Revision Date: 2021-03-03 Version: 1 Title: Security update for openldap2 (Important) Description: This update for openldap2 fixes the following issues: - bsc#1182408 CVE-2020-36230 - an assertion failure in slapd in the X.509 DN parsing in decode.c ber_next_element, resulting in denial of service. - bsc#1182411 CVE-2020-36229 - ldap_X509dn2bv crash in the X.509 DN parsing in ad_keystring, resulting in denial of service. - bsc#1182412 CVE-2020-36228 - integer underflow leading to crash in the Certificate List Exact Assertion processing, resulting in denial of service. - bsc#1182413 CVE-2020-36227 - infinite loop in slapd with the cancel_extop Cancel operation, resulting in denial of service. - bsc#1182416 CVE-2020-36225 - double free and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182417 CVE-2020-36224 - invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182415 CVE-2020-36226 - memch->bv_len miscalculation and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182419 CVE-2020-36222 - assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service. - bsc#1182420 CVE-2020-36221 - slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service (schema_init.c serialNumberAndIssuerCheck). - bsc#1182418 CVE-2020-36223 - slapd crash in the Values Return Filter control handling, resulting in denial of service (double free and out-of-bounds read). - bsc#1182279 CVE-2021-27212 - an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime. Family: unix Class: patch Status: Reference(s): 1055186 1065600 1065729 1094244 1103203 1112178 1113956 1133191 1135280 1136446 1136935 1137597 1139884 1139885 1139886 1140100 1140102 1140103 1140104 1140105 1140106 1140110 1140111 1140501 1140513 1140520 1140534 1140538 1140543 1140545 1140547 1140549 1140552 1140554 1140664 1140665 1140666 1140667 1140668 1140669 1140673 1141171 1144502 1154366 1157652 1158095 1158328 1160467 1160468 1160968 1167527 1168468 1169972 1171675 1171688 1171742 1171746 1172140 1172405 1172437 1173115 1173257 1174157 1174899 1174922 1174923 1175228 1175749 1175882 1176011 1176022 1176038 1176235 1176242 1176278 1176316 1176317 1176318 1176319 1176320 1176321 1176381 1176395 1176410 1176423 1176482 1176507 1176536 1176544 1176545 1176546 1176548 1176659 1176698 1176699 1176700 1176721 1176722 1176725 1176732 1176788 1176789 1176869 1176877 1176935 1176950 1176962 1176966 1176990 1177027 1177030 1177041 1177042 1177043 1177044 1177121 1177206 1177258 1177291 1177293 1177294 1177295 1177296 1177943 1182279 1182408 1182411 1182412 1182413 1182415 1182416 1182417 1182418 1182419 1182420 CVE-2010-0407 CVE-2010-4531 CVE-2011-0020 CVE-2011-0064 CVE-2012-2673 CVE-2018-1000199 CVE-2019-11085 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-11745 CVE-2019-12974 CVE-2019-12975 CVE-2019-12976 CVE-2019-12977 CVE-2019-12978 CVE-2019-12979 CVE-2019-13133 CVE-2019-13134 CVE-2019-13135 CVE-2019-13136 CVE-2019-13137 CVE-2019-13295 CVE-2019-13296 CVE-2019-13297 CVE-2019-13298 CVE-2019-13299 CVE-2019-13300 CVE-2019-13301 CVE-2019-13302 CVE-2019-13303 CVE-2019-13304 CVE-2019-13305 CVE-2019-13306 CVE-2019-13307 CVE-2019-13308 CVE-2019-13309 CVE-2019-13310 CVE-2019-13311 CVE-2019-13391 CVE-2019-13454 CVE-2019-13722 CVE-2019-14889 CVE-2019-14896 CVE-2019-14897 CVE-2019-15666 CVE-2019-17005 CVE-2019-17008 CVE-2019-17009 CVE-2019-17010 CVE-2019-17011 CVE-2019-17012 CVE-2019-3846 CVE-2020-0404 CVE-2020-0404 CVE-2020-0427 CVE-2020-0427 CVE-2020-0431 CVE-2020-0431 CVE-2020-0432 CVE-2020-0432 CVE-2020-10757 CVE-2020-12673 CVE-2020-12674 CVE-2020-13233 CVE-2020-14019 CVE-2020-14381 CVE-2020-14381 CVE-2020-14390 CVE-2020-14390 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803 CVE-2020-25212 CVE-2020-25212 CVE-2020-25284 CVE-2020-25284 CVE-2020-25641 CVE-2020-25641 CVE-2020-25643 CVE-2020-25643 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-26088 CVE-2020-26088 CVE-2020-2654 CVE-2020-2659 CVE-2020-36221 CVE-2020-36222 CVE-2020-36223 CVE-2020-36224 CVE-2020-36225 CVE-2020-36226 CVE-2020-36227 CVE-2020-36228 CVE-2020-36229 CVE-2020-36230 CVE-2020-8022 CVE-2021-27212 SUSE-SU-2019:2106-1 SUSE-SU-2019:3337-1 SUSE-SU-2020:0130-1 SUSE-SU-2020:0231-1 SUSE-SU-2020:1790-1 SUSE-SU-2020:2109-1 SUSE-SU-2020:2267-1 SUSE-SU-2020:2905-1 SUSE-SU-2021:0693-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Python2 packages 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND libssh2-0.2-5.18 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information gpgme-1.1.6-25.32 is installed OR libgpgme11-1.1.6-25.32 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND wireshark-1.12.7-0.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND libgc1-7.2d-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gd-2.1.0-5 is installed OR gd-32bit-2.1.0-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND hardlink-1.0-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information colord-1.3.3-12 is installed OR colord-gtk-lang-0.1.26-6 is installed OR colord-lang-1.3.3-12 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-12 is installed OR libcolord2-32bit-1.3.3-12 is installed OR libcolorhug2-1.3.3-12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information dbus-1-glib-0.100.2-3 is installed OR dbus-1-glib-32bit-0.100.2-3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information MozillaFirefox-68.3.0-3.62 is installed OR MozillaFirefox-devel-68.3.0-3.62 is installed OR MozillaFirefox-translations-common-68.3.0-3.62 is installed OR MozillaFirefox-translations-other-68.3.0-3.62 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information ImageMagick-7.0.7.34-3.67 is installed OR ImageMagick-config-7-SUSE-7.0.7.34-3.67 is installed OR ImageMagick-devel-7.0.7.34-3.67 is installed OR libMagick++-7_Q16HDRI4-7.0.7.34-3.67 is installed OR libMagick++-devel-7.0.7.34-3.67 is installed OR libMagickCore-7_Q16HDRI6-7.0.7.34-3.67 is installed OR libMagickWand-7_Q16HDRI6-7.0.7.34-3.67 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.242-3.30 is installed OR java-1_8_0-openjdk-demo-1.8.0.242-3.30 is installed OR java-1_8_0-openjdk-devel-1.8.0.242-3.30 is installed OR java-1_8_0-openjdk-headless-1.8.0.242-3.30 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.61 is installed OR reiserfs-kmp-default-4.12.14-197.61 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_25-default-4-2 is installed OR kernel-livepatch-SLE15_Update_7-4-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_4-default-11-2 is installed OR kernel-livepatch-SLE15-SP1_Update_1-11-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information java-1_8_0-openjdk-1.8.0.272-3.42 is installed OR java-1_8_0-openjdk-accessibility-1.8.0.272-3.42 is installed OR java-1_8_0-openjdk-javadoc-1.8.0.272-3.42 is installed OR java-1_8_0-openjdk-src-1.8.0.272-3.42 is installed Definition Synopsis SUSE Linux Enterprise Module for Python2 packages 15 SP2 is installed AND Package Information python-rtslib-fb-2.1.73-3.3 is installed OR python2-rtslib-fb-2.1.73-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information dovecot23-2.3.10-16 is installed OR dovecot23-backend-mysql-2.3.10-16 is installed OR dovecot23-backend-pgsql-2.3.10-16 is installed OR dovecot23-backend-sqlite-2.3.10-16 is installed OR dovecot23-devel-2.3.10-16 is installed OR dovecot23-fts-2.3.10-16 is installed OR dovecot23-fts-lucene-2.3.10-16 is installed OR dovecot23-fts-solr-2.3.10-16 is installed OR dovecot23-fts-squat-2.3.10-16 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information tomcat-9.0.35-4.35 is installed OR tomcat-admin-webapps-9.0.35-4.35 is installed OR tomcat-el-3_0-api-9.0.35-4.35 is installed OR tomcat-jsp-2_3-api-9.0.35-4.35 is installed OR tomcat-lib-9.0.35-4.35 is installed OR tomcat-servlet-4_0-api-9.0.35-4.35 is installed OR tomcat-webapps-9.0.35-4.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libgcrypt-1.6.1-16.33 is installed OR libgcrypt20-1.6.1-16.33 is installed OR libgcrypt20-32bit-1.6.1-16.33 is installed OR libgcrypt20-hmac-1.6.1-16.33 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_88-default-3-2 is installed OR kgraft-patch-3_12_74-60_64_88-xen-3-2 is installed OR kgraft-patch-SLE12-SP1_Update_27-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gnutls-3.2.15-11 is installed OR libgnutls-openssl27-3.2.15-11 is installed OR libgnutls28-3.2.15-11 is installed OR libgnutls28-32bit-3.2.15-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND ucode-intel-20180425-13.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_103-92_56-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_17-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND ant-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information evince-3.20.2-6.27 is installed OR evince-browser-plugin-3.20.2-6.27 is installed OR evince-lang-3.20.2-6.27 is installed OR evince-plugin-djvudocument-3.20.2-6.27 is installed OR evince-plugin-dvidocument-3.20.2-6.27 is installed OR evince-plugin-pdfdocument-3.20.2-6.27 is installed OR evince-plugin-psdocument-3.20.2-6.27 is installed OR evince-plugin-tiffdocument-3.20.2-6.27 is installed OR evince-plugin-xpsdocument-3.20.2-6.27 is installed OR libevdocument3-4-3.20.2-6.27 is installed OR libevview3-3-3.20.2-6.27 is installed OR nautilus-evince-3.20.2-6.27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_155-94_50-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_17-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libgcrypt-1.6.1-16.58 is installed OR libgcrypt20-1.6.1-16.58 is installed OR libgcrypt20-32bit-1.6.1-16.58 is installed OR libgcrypt20-hmac-1.6.1-16.58 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.58 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information ecryptfs-utils-103-8.3 is installed OR ecryptfs-utils-32bit-103-8.3 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND Package Information libldap-2_4-2-2.4.41-18.83.1 is installed OR libldap-2_4-2-32bit-2.4.41-18.83.1 is installed OR openldap2-2.4.41-18.83.1 is installed OR openldap2-back-meta-2.4.41-18.83.1 is installed OR openldap2-client-2.4.41-18.83.1 is installed OR openldap2-doc-2.4.41-18.83.1 is installed OR openldap2-ppolicy-check-password-1.2-18.83.1 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libssh-0.7.5-6.9 is installed OR libssh-devel-0.7.5-6.9 is installed OR libssh4-0.7.5-6.9 is installed OR libssh4-32bit-0.7.5-6.9 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.61 is installed OR kernel-default-extra-4.12.14-197.61 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND clamav-0.99.3-33.5 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information python-cryptography-1.3.1-7.13 is installed OR python-pyOpenSSL-16.0.0-4.11 is installed OR python-setuptools-18.0.1-4.8 is installed OR python3-cryptography-1.3.1-7.13 is installed OR python3-pyOpenSSL-16.0.0-4.11 is installed OR python3-setuptools-18.0.1-4.8 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libsolv-0.6.36-2.16 is installed OR libsolv-tools-0.6.36-2.16 is installed OR libzypp-16.20.0-2.39 is installed OR perl-solv-0.6.36-2.16 is installed OR python-solv-0.6.36-2.16 is installed OR zypper-1.13.51-21.26 is installed OR zypper-log-1.13.51-21.26 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed
BACK