Oval Definition:	oval:org.opensuse.security:def:52447
Revision Date: 2020-12-01 Version: 1 Title: Security update for openldap2 (Moderate) Description: This update for openldap2 fixes the following issues: - CVE-2020-8027: openldap_update_modules_path.sh starts daemons unconditionally and uses fixed paths in /tmp (bsc#1175568). Family: unix Class: patch Status: Reference(s): 1027519 1046299 1046303 1046305 1050244 1050536 1050545 1051510 1055186 1061840 1064802 1065600 1066129 1073513 1082635 1083647 1086323 1087092 1089644 1090631 1093205 1096254 1097583 1097584 1097585 1097586 1097587 1097588 1098291 1101674 1109158 1114279 1117665 1119461 1119465 1123034 1123080 1133140 1134303 1135642 1135854 1135873 1135966 1135967 1137040 1137799 1138190 1139073 1140090 1140729 1140845 1140883 1141600 1142635 1142667 1143706 1144338 1144375 1144449 1144903 1145099 1146612 1148410 1149119 1150452 1150457 1150465 1150875 1151508 1152624 1152685 1152788 1152791 1153112 1153158 1153236 1153263 1153476 1153509 1153646 1153713 1153717 1153718 1153719 1153811 1153969 1154108 1154189 1154354 1154372 1154578 1154607 1154608 1154610 1154611 1154651 1154737 1154747 1154848 1154858 1154905 1155178 1155179 1155184 1155186 1155671 1174230 1175568 1176384 1176756 1176899 1177950 1177977 1178591 CVE-2002-2443 CVE-2009-0844 CVE-2009-0845 CVE-2009-0846 CVE-2009-0847 CVE-2009-2285 CVE-2009-2347 CVE-2009-3295 CVE-2009-3939 CVE-2009-4026 CVE-2009-4027 CVE-2009-4131 CVE-2009-4138 CVE-2009-4212 CVE-2009-4536 CVE-2009-4538 CVE-2010-0283 CVE-2010-0628 CVE-2010-1146 CVE-2010-1320 CVE-2010-1321 CVE-2010-1322 CVE-2010-1323 CVE-2010-1324 CVE-2010-1436 CVE-2010-1641 CVE-2010-2065 CVE-2010-2066 CVE-2010-2067 CVE-2010-2233 CVE-2010-2640 CVE-2010-2641 CVE-2010-2642 CVE-2010-2643 CVE-2010-2942 CVE-2010-2954 CVE-2010-2955 CVE-2010-3081 CVE-2010-3296 CVE-2010-3297 CVE-2010-3298 CVE-2010-3301 CVE-2010-3310 CVE-2010-4020 CVE-2010-4021 CVE-2010-4022 CVE-2010-4665 CVE-2011-0192 CVE-2011-0281 CVE-2011-0282 CVE-2011-0284 CVE-2011-0285 CVE-2011-0421 CVE-2011-0712 CVE-2011-1020 CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1167 CVE-2011-1527 CVE-2011-1528 CVE-2011-1529 CVE-2011-1530 CVE-2011-1577 CVE-2011-1709 CVE-2011-2203 CVE-2012-0037 CVE-2012-0056 CVE-2012-1012 CVE-2012-1013 CVE-2012-1016 CVE-2012-1162 CVE-2012-1163 CVE-2012-1173 CVE-2012-2113 CVE-2012-2372 CVE-2012-3401 CVE-2012-4564 CVE-2013-0160 CVE-2013-0231 CVE-2013-0913 CVE-2013-1415 CVE-2013-1417 CVE-2013-1418 CVE-2013-1960 CVE-2013-1961 CVE-2013-2850 CVE-2013-4231 CVE-2013-4232 CVE-2013-4243 CVE-2013-4244 CVE-2013-4587 CVE-2013-6367 CVE-2013-6368 CVE-2013-6376 CVE-2013-6473 CVE-2013-6474 CVE-2013-6475 CVE-2013-6476 CVE-2014-00691 CVE-2014-0102 CVE-2014-0131 CVE-2014-0196 CVE-2014-2523 CVE-2014-2707 CVE-2014-3534 CVE-2014-3917 CVE-2014-3940 CVE-2014-4171 CVE-2014-4336 CVE-2014-4337 CVE-2014-4338 CVE-2014-4341 CVE-2014-4342 CVE-2014-4343 CVE-2014-4344 CVE-2014-4345 CVE-2014-4652 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 CVE-2014-4656 CVE-2014-4699 CVE-2014-4943 CVE-2014-5045 CVE-2014-5077 CVE-2014-5206 CVE-2014-5207 CVE-2014-5351 CVE-2014-5352 CVE-2014-5353 CVE-2014-5354 CVE-2014-5355 CVE-2014-5471 CVE-2014-5472 CVE-2014-8127 CVE-2014-8128 CVE-2014-8129 CVE-2014-8130 CVE-2014-9421 CVE-2014-9422 CVE-2014-9423 CVE-2014-9655 CVE-2015-1038 CVE-2015-1547 CVE-2015-2265 CVE-2015-2331 CVE-2015-2694 CVE-2015-2695 CVE-2015-2696 CVE-2015-2697 CVE-2015-2698 CVE-2015-3258 CVE-2015-3279 CVE-2015-7554 CVE-2015-8327 CVE-2015-8560 CVE-2015-8629 CVE-2015-8630 CVE-2015-8631 CVE-2015-8665 CVE-2015-8683 CVE-2015-8781 CVE-2015-8782 CVE-2015-8783 CVE-2016-10095 CVE-2016-10266 CVE-2016-10267 CVE-2016-10268 CVE-2016-10269 CVE-2016-10270 CVE-2016-10271 CVE-2016-10272 CVE-2016-10371 CVE-2016-2335 CVE-2016-3119 CVE-2016-3120 CVE-2016-3186 CVE-2016-3622 CVE-2016-3623 CVE-2016-3632 CVE-2016-3658 CVE-2016-3945 CVE-2016-3990 CVE-2016-3991 CVE-2016-5314 CVE-2016-5316 CVE-2016-5317 CVE-2016-5318 CVE-2016-5319 CVE-2016-5320 CVE-2016-5321 CVE-2016-5323 CVE-2016-5652 CVE-2016-5875 CVE-2016-8331 CVE-2016-9273 CVE-2016-9297 CVE-2016-9448 CVE-2016-9453 CVE-2016-9538 CVE-2016-9843 CVE-2017-11462 CVE-2017-11613 CVE-2017-14107 CVE-2017-15088 CVE-2017-16232 CVE-2017-17942 CVE-2017-17973 CVE-2017-18013 CVE-2017-5225 CVE-2017-7592 CVE-2017-7593 CVE-2017-7594 CVE-2017-7595 CVE-2017-7596 CVE-2017-7597 CVE-2017-7598 CVE-2017-7599 CVE-2017-7600 CVE-2017-7601 CVE-2017-7602 CVE-2017-9403 CVE-2017-9404 CVE-2017-9935 CVE-2017-9936 CVE-2018-10779 CVE-2018-10963 CVE-2018-12207 CVE-2018-16335 CVE-2018-17100 CVE-2018-17101 CVE-2018-17795 CVE-2018-5729 CVE-2018-5730 CVE-2018-5784 CVE-2018-7456 CVE-2018-8905 CVE-2019-0154 CVE-2019-0155 CVE-2019-10220 CVE-2019-11135 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16995 CVE-2019-17056 CVE-2019-17133 CVE-2019-17666 CVE-2020-15673 CVE-2020-15676 CVE-2020-15677 CVE-2020-15678 CVE-2020-15683 CVE-2020-15969 CVE-2020-28368 CVE-2020-8027 SUSE-SU-2020:3091-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information dhcp-4.3.5-lp150.4 is installed OR dhcp-client-4.3.5-lp150.4 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND putty-0.72-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information java-1_6_0-openjdk-1.6.0.0_b27.1.12.7-0.2 is installed OR java-1_6_0-openjdk-demo-1.6.0.0_b27.1.12.7-0.2 is installed OR java-1_6_0-openjdk-devel-1.6.0.0_b27.1.12.7-0.2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information flash-player-11.2.202.548-0.26 is installed OR flash-player-gnome-11.2.202.548-0.26 is installed OR flash-player-kde4-11.2.202.548-0.26 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information kernel-default-3.12.28-4 is installed OR kernel-default-devel-3.12.28-4 is installed OR kernel-default-extra-3.12.28-4 is installed OR kernel-devel-3.12.28-4 is installed OR kernel-macros-3.12.28-4 is installed OR kernel-source-3.12.28-4 is installed OR kernel-syms-3.12.28-4 is installed OR kernel-xen-3.12.28-4 is installed OR kernel-xen-devel-3.12.28-4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information evince-3.10.3-1 is installed OR evince-lang-3.10.3-1 is installed OR libevdocument3-4-3.10.3-1 is installed OR libevview3-3-3.10.3-1 is installed OR typelib-1_0-EvinceDocument-3_0-3.10.3-1 is installed OR typelib-1_0-EvinceView-3_0-3.10.3-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information gdm-3.10.0.1-52 is installed OR gdm-lang-3.10.0.1-52 is installed OR gdmflexiserver-3.10.0.1-52 is installed OR libgdm1-3.10.0.1-52 is installed OR typelib-1_0-Gdm-1_0-3.10.0.1-52 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cups-filters-1.0.58-17 is installed OR cups-filters-cups-browsed-1.0.58-17 is installed OR cups-filters-foomatic-rip-1.0.58-17 is installed OR cups-filters-ghostscript-1.0.58-17 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information krb5-1.12.5-40.28 is installed OR krb5-32bit-1.12.5-40.28 is installed OR krb5-client-1.12.5-40.28 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information openldap2-2.4.46-9.37 is installed OR openldap2-back-sock-2.4.46-9.37 is installed OR openldap2-back-sql-2.4.46-9.37 is installed OR openldap2-contrib-2.4.46-9.37 is installed OR openldap2-doc-2.4.46-9.37 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libXcursor1-1.1.14-3 is installed OR libXcursor1-32bit-1.1.14-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kernel-default-3.12.74-60.64.63 is installed OR kernel-default-base-3.12.74-60.64.63 is installed OR kernel-default-devel-3.12.74-60.64.63 is installed OR kernel-default-man-3.12.74-60.64.63 is installed OR kernel-devel-3.12.74-60.64.63 is installed OR kernel-macros-3.12.74-60.64.63 is installed OR kernel-source-3.12.74-60.64.63 is installed OR kernel-syms-3.12.74-60.64.63 is installed OR kernel-xen-3.12.74-60.64.63 is installed OR kernel-xen-base-3.12.74-60.64.63 is installed OR kernel-xen-devel-3.12.74-60.64.63 is installed OR kgraft-patch-3_12_74-60_64_63-default-1-2 is installed OR kgraft-patch-3_12_74-60_64_63-xen-1-2 is installed OR kgraft-patch-SLE12-SP1_Update_22-1-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.5-30.13 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.5-30.13 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.5-30.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND sudo-1.8.10p3-10.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_103-92_53-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_16-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cpio-2.11-35 is installed OR cpio-lang-2.11-35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information glibc-2.22-62.22 is installed OR glibc-32bit-2.22-62.22 is installed OR glibc-devel-2.22-62.22 is installed OR glibc-devel-32bit-2.22-62.22 is installed OR glibc-html-2.22-62.22 is installed OR glibc-i18ndata-2.22-62.22 is installed OR glibc-info-2.22-62.22 is installed OR glibc-locale-2.22-62.22 is installed OR glibc-locale-32bit-2.22-62.22 is installed OR glibc-profile-2.22-62.22 is installed OR glibc-profile-32bit-2.22-62.22 is installed OR nscd-2.22-62.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information xen-4.9.2_10-3.41 is installed OR xen-doc-html-4.9.2_10-3.41 is installed OR xen-libs-4.9.2_10-3.41 is installed OR xen-libs-32bit-4.9.2_10-3.41 is installed OR xen-tools-4.9.2_10-3.41 is installed OR xen-tools-domU-4.9.2_10-3.41 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-150.41 is installed OR kernel-default-extra-4.12.14-150.41 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-78.4.0-3.99 is installed OR MozillaThunderbird-translations-common-78.4.0-3.99 is installed OR MozillaThunderbird-translations-other-78.4.0-3.99 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information MozillaThunderbird-78.4.0-3.99 is installed OR MozillaThunderbird-translations-common-78.4.0-3.99 is installed OR MozillaThunderbird-translations-other-78.4.0-3.99 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information ruby2.1-rubygem-actionview-4_2-4.2.2-8 is installed OR rubygem-actionview-4_2-4.2.2-8 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND nodejs6-6.14.3-11.15 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information kernel-default-4.4.180-94.100 is installed OR kernel-default-base-4.4.180-94.100 is installed OR kernel-default-devel-4.4.180-94.100 is installed OR kernel-devel-4.4.180-94.100 is installed OR kernel-macros-4.4.180-94.100 is installed OR kernel-source-4.4.180-94.100 is installed OR kernel-syms-4.4.180-94.100 is installed OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND couchdb-1.7.2-3.3 is installed
BACK