Oval Definition:	oval:org.opensuse.security:def:52019
Revision Date: 2021-03-03 Version: 1 Title: Security update for openldap2 (Important) Description: This update for openldap2 fixes the following issues: - bsc#1182408 CVE-2020-36230 - an assertion failure in slapd in the X.509 DN parsing in decode.c ber_next_element, resulting in denial of service. - bsc#1182411 CVE-2020-36229 - ldap_X509dn2bv crash in the X.509 DN parsing in ad_keystring, resulting in denial of service. - bsc#1182412 CVE-2020-36228 - integer underflow leading to crash in the Certificate List Exact Assertion processing, resulting in denial of service. - bsc#1182413 CVE-2020-36227 - infinite loop in slapd with the cancel_extop Cancel operation, resulting in denial of service. - bsc#1182416 CVE-2020-36225 - double free and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182417 CVE-2020-36224 - invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182415 CVE-2020-36226 - memch->bv_len miscalculation and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182419 CVE-2020-36222 - assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service. - bsc#1182420 CVE-2020-36221 - slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service (schema_init.c serialNumberAndIssuerCheck). - bsc#1182418 CVE-2020-36223 - slapd crash in the Values Return Filter control handling, resulting in denial of service (double free and out-of-bounds read). - bsc#1182279 CVE-2021-27212 - an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime. Family: unix Class: patch Status: Reference(s): 1012382 1043912 1044189 1046302 1046306 1046307 1046543 1050244 1051510 1054914 1055014 1055117 1058659 1060463 1064232 1065600 1065729 1068032 1069138 1071995 1077761 1077989 1078720 1080157 1082555 1083647 1083663 1084332 1085042 1085262 1086282 1089663 1090528 1092903 1093389 1094244 1095344 1096748 1097105 1098459 1098822 1099922 1099999 1100000 1100001 1100132 1101557 1101669 1102346 1102870 1102875 1102877 1102879 1102882 1102896 1103363 1103387 1103421 1103948 1103949 1103961 1104172 1104353 1104824 1105247 1105524 1105536 1105597 1105603 1105672 1105907 1106007 1106016 1106105 1106121 1106170 1106178 1106191 1106229 1106230 1106231 1106233 1106235 1106236 1106237 1106238 1106240 1106291 1106297 1106333 1106369 1106426 1106427 1106464 1106509 1106511 1106594 1106636 1106688 1106697 1106743 1106779 1106800 1106890 1106891 1106892 1106893 1106894 1106896 1106897 1106898 1106899 1106900 1106901 1106902 1106903 1106905 1106906 1106948 1106995 1107008 1107060 1107061 1107065 1107073 1107074 1107078 1107265 1107319 1107320 1107522 1107535 1107689 1107735 1107756 1107870 1107924 1107945 1107966 1108010 1108093 1108243 1108520 1108870 1109269 1109511 1131314 1131553 1133375 1152308 1161335 1167240 1172686 1172906 1172935 1173197 1173937 1175193 1175194 1176625 1182279 1182408 1182411 1182412 1182413 1182415 1182416 1182417 1182418 1182419 1182420 920344 CVE-2006-4197 CVE-2009-2624 CVE-2010-0001 CVE-2010-2800 CVE-2010-2801 CVE-2011-0020 CVE-2011-0064 CVE-2011-0523 CVE-2011-0524 CVE-2014-2524 CVE-2014-3467 CVE-2014-3468 CVE-2014-3469 CVE-2014-3564 CVE-2014-6271 CVE-2014-6277 CVE-2014-6278 CVE-2014-7169 CVE-2014-7186 CVE-2014-7187 CVE-2014-9556 CVE-2014-9732 CVE-2015-2806 CVE-2015-4467 CVE-2015-4468 CVE-2015-4469 CVE-2015-4470 CVE-2015-4471 CVE-2015-4472 CVE-2018-10938 CVE-2018-10940 CVE-2018-1128 CVE-2018-1129 CVE-2018-12896 CVE-2018-13093 CVE-2018-13094 CVE-2018-13095 CVE-2018-14613 CVE-2018-14617 CVE-2018-16658 CVE-2018-6554 CVE-2018-6555 CVE-2019-16884 CVE-2019-9928 CVE-2020-14093 CVE-2020-14154 CVE-2020-14349 CVE-2020-14350 CVE-2020-14954 CVE-2020-15095 CVE-2020-36221 CVE-2020-36222 CVE-2020-36223 CVE-2020-36224 CVE-2020-36225 CVE-2020-36226 CVE-2020-36227 CVE-2020-36228 CVE-2020-36229 CVE-2020-36230 CVE-2020-5267 CVE-2021-27212 SUSE-SU-2018:2980-1 SUSE-SU-2019:2810-1 SUSE-SU-2020:1178-1 SUSE-SU-2020:1300-1 SUSE-SU-2020:1771-1 SUSE-SU-2020:2265-1 SUSE-SU-2020:2814-1 SUSE-SU-2020:2870-1 SUSE-SU-2021:0693-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information kinit-5.45.0-lp150.1 is installed OR kinit-lang-5.45.0-lp150.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information evolution-data-server-2.28.2-0.32 is installed OR evolution-data-server-32bit-2.28.2-0.32 is installed OR evolution-data-server-lang-2.28.2-0.32 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information MozillaFirefox-38.3.0esr-22 is installed OR MozillaFirefox-translations-38.3.0esr-22 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libpango-1_0-0-1.36.3-4 is installed OR libpango-1_0-0-32bit-1.36.3-4 is installed OR pango-modules-1.36.3-4 is installed OR pango-modules-32bit-1.36.3-4 is installed OR typelib-1_0-Pango-1_0-1.36.3-4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gpgme-1.5.1-1 is installed OR libgpgme11-1.5.1-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND gzip-1.6-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information bash-4.3-82 is installed OR bash-doc-4.3-82 is installed OR bash-lang-4.3-82 is installed OR libreadline6-6.3-82 is installed OR libreadline6-32bit-6.3-82 is installed OR readline-doc-6.3-82 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND fetchmail-6.3.26-12 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information runc-1.0.0~rc8-1.6 is installed OR runc-test-1.0.0~rc8-1.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information libecpg6-12.4-8.6 is installed OR postgresql12-12.4-8.6 is installed OR postgresql12-contrib-12.4-8.6 is installed OR postgresql12-devel-12.4-8.6 is installed OR postgresql12-docs-12.4-8.6 is installed OR postgresql12-plperl-12.4-8.6 is installed OR postgresql12-plpython-12.4-8.6 is installed OR postgresql12-pltcl-12.4-8.6 is installed OR postgresql12-server-12.4-8.6 is installed OR postgresql12-server-devel-12.4-8.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.17.0-3.38 is installed OR nodejs8-devel-8.17.0-3.38 is installed OR nodejs8-docs-8.17.0-3.38 is installed OR npm8-8.17.0-3.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND pigz-2.3-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_99-default-8-2 is installed OR kgraft-patch-3_12_74-60_64_99-xen-8-2 is installed OR kgraft-patch-SLE12-SP1_Update_30-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information colord-gtk-lang-0.1.26-6 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-10 is installed OR libcolord2-32bit-1.3.3-10 is installed OR libcolorhug2-1.3.3-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_85-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_23-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gdk-pixbuf-loader-rsvg-2.40.15-4 is installed OR librsvg-2-2-2.40.15-4 is installed OR librsvg-2-2-32bit-2.40.15-4 is installed OR rsvg-view-2.40.15-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_178-94_91-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_25-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libpython2_7-1_0-2.7.13-28.16 is installed OR libpython2_7-1_0-32bit-2.7.13-28.16 is installed OR python-2.7.13-28.16 is installed OR python-32bit-2.7.13-28.16 is installed OR python-base-2.7.13-28.16 is installed OR python-base-32bit-2.7.13-28.16 is installed OR python-curses-2.7.13-28.16 is installed OR python-demo-2.7.13-28.16 is installed OR python-doc-2.7.13-28.16 is installed OR python-doc-pdf-2.7.13-28.16 is installed OR python-gdbm-2.7.13-28.16 is installed OR python-idle-2.7.13-28.16 is installed OR python-tk-2.7.13-28.16 is installed OR python-xml-2.7.13-28.16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information freeradius-server-3.0.15-2.8 is installed OR freeradius-server-doc-3.0.15-2.8 is installed OR freeradius-server-krb5-3.0.15-2.8 is installed OR freeradius-server-ldap-3.0.15-2.8 is installed OR freeradius-server-libs-3.0.15-2.8 is installed OR freeradius-server-mysql-3.0.15-2.8 is installed OR freeradius-server-perl-3.0.15-2.8 is installed OR freeradius-server-postgresql-3.0.15-2.8 is installed OR freeradius-server-python-3.0.15-2.8 is installed OR freeradius-server-sqlite-3.0.15-2.8 is installed OR freeradius-server-utils-3.0.15-2.8 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information gstreamer-plugins-base-1.12.5-3.3 is installed OR gstreamer-plugins-base-lang-1.12.5-3.3 is installed OR libgstallocators-1_0-0-1.12.5-3.3 is installed OR libgstapp-1_0-0-1.12.5-3.3 is installed OR libgstaudio-1_0-0-1.12.5-3.3 is installed OR libgstfft-1_0-0-1.12.5-3.3 is installed OR libgstpbutils-1_0-0-1.12.5-3.3 is installed OR libgstriff-1_0-0-1.12.5-3.3 is installed OR libgstrtp-1_0-0-1.12.5-3.3 is installed OR libgstrtsp-1_0-0-1.12.5-3.3 is installed OR libgstsdp-1_0-0-1.12.5-3.3 is installed OR libgsttag-1_0-0-1.12.5-3.3 is installed OR libgstvideo-1_0-0-1.12.5-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND Package Information libldap-2_4-2-2.4.41-18.83.1 is installed OR libldap-2_4-2-32bit-2.4.41-18.83.1 is installed OR openldap2-2.4.41-18.83.1 is installed OR openldap2-back-meta-2.4.41-18.83.1 is installed OR openldap2-client-2.4.41-18.83.1 is installed OR openldap2-doc-2.4.41-18.83.1 is installed OR openldap2-ppolicy-check-password-1.2-18.83.1 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information mutt-1.10.1-3.8 is installed OR mutt-doc-1.10.1-3.8 is installed OR mutt-lang-1.10.1-3.8 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.19 is installed OR kernel-default-extra-4.12.14-25.19 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information openstack-horizon-plugin-manila-ui-1.2.1~a0~dev2-3 is installed OR python-horizon-plugin-manila-ui-1.2.1~a0~dev2-3 is installed Definition Synopsis SUSE OpenStack Cloud 6-LTSS is installed AND docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-1.9 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information java-1_8_0-openjdk-1.8.0.212-27.32 is installed OR java-1_8_0-openjdk-demo-1.8.0.212-27.32 is installed OR java-1_8_0-openjdk-devel-1.8.0.212-27.32 is installed OR java-1_8_0-openjdk-headless-1.8.0.212-27.32 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND slf4j-1.7.12-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information mariadb-10.2.25-3.19 is installed OR mariadb-galera-10.2.25-3.19 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND gdb-8.3.1-2.14 is installed
BACK