Oval Definition:	oval:org.opensuse.security:def:55303
Revision Date: 2021-03-03 Version: 1 Title: Security update for openldap2 (Important) Description: This update for openldap2 fixes the following issues: - bsc#1182408 CVE-2020-36230 - an assertion failure in slapd in the X.509 DN parsing in decode.c ber_next_element, resulting in denial of service. - bsc#1182411 CVE-2020-36229 - ldap_X509dn2bv crash in the X.509 DN parsing in ad_keystring, resulting in denial of service. - bsc#1182412 CVE-2020-36228 - integer underflow leading to crash in the Certificate List Exact Assertion processing, resulting in denial of service. - bsc#1182413 CVE-2020-36227 - infinite loop in slapd with the cancel_extop Cancel operation, resulting in denial of service. - bsc#1182416 CVE-2020-36225 - double free and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182417 CVE-2020-36224 - invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182415 CVE-2020-36226 - memch->bv_len miscalculation and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182419 CVE-2020-36222 - assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service. - bsc#1182420 CVE-2020-36221 - slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service (schema_init.c serialNumberAndIssuerCheck). - bsc#1182418 CVE-2020-36223 - slapd crash in the Values Return Filter control handling, resulting in denial of service (double free and out-of-bounds read). - bsc#1182279 CVE-2021-27212 - an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime. Family: unix Class: patch Status: Reference(s): 1000435 1001765 1001951 1056450 1057389 1068664 1079300 1104205 1108630 1108631 1108632 1109209 1120281 1150011 1182279 1182408 1182411 1182412 1182413 1182415 1182416 1182417 1182418 1182419 1182420 894370 928292 932894 952051 953817 954374 954980 967082 970293 982210 982211 982251 984906 987173 987857 987887 988311 990074 996269 CVE-2010-3170 CVE-2011-3200 CVE-2011-3389 CVE-2011-3640 CVE-2013-0743 CVE-2013-0791 CVE-2013-1620 CVE-2013-1739 CVE-2013-1740 CVE-2013-4758 CVE-2013-5605 CVE-2013-5653 CVE-2013-6370 CVE-2013-6371 CVE-2014-1492 CVE-2014-1562 CVE-2014-1567 CVE-2014-1568 CVE-2014-1569 CVE-2014-3634 CVE-2014-3683 CVE-2015-3243 CVE-2015-4000 CVE-2015-7181 CVE-2015-7182 CVE-2015-7981 CVE-2015-8023 CVE-2015-8126 CVE-2015-8853 CVE-2016-10163 CVE-2016-10214 CVE-2016-1238 CVE-2016-2381 CVE-2016-6185 CVE-2016-7796 CVE-2016-7978 CVE-2016-7979 CVE-2017-1000158 CVE-2017-1000251 CVE-2017-14062 CVE-2017-5580 CVE-2017-5937 CVE-2017-5956 CVE-2017-5957 CVE-2017-5993 CVE-2017-5994 CVE-2017-6209 CVE-2017-6210 CVE-2017-6317 CVE-2017-6355 CVE-2017-6386 CVE-2018-1000030 CVE-2018-1000845 CVE-2018-14526 CVE-2018-17096 CVE-2018-17097 CVE-2018-17098 CVE-2019-14822 CVE-2020-36221 CVE-2020-36222 CVE-2020-36223 CVE-2020-36224 CVE-2020-36225 CVE-2020-36226 CVE-2020-36227 CVE-2020-36228 CVE-2020-36229 CVE-2020-36230 CVE-2021-27212 SUSE-SU-2015:2017-1 SUSE-SU-2015:2186-1 SUSE-SU-2016:2263-1 SUSE-SU-2016:2476-1 SUSE-SU-2016:2492-1 SUSE-SU-2017:2459-1 SUSE-SU-2018:0878-1 SUSE-SU-2018:1372-1 SUSE-SU-2018:3606-1 SUSE-SU-2019:0179-1 SUSE-SU-2019:1088-1 SUSE-SU-2019:2389-1 SUSE-SU-2021:0693-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information gpgme-1.10.0-lp150.2 is installed OR libgpgme11-1.10.0-lp150.2 is installed OR libgpgmepp6-1.10.0-lp150.2 is installed OR libqgpgme7-1.10.0-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information chromedriver-76.0.3809.100-lp151.2.20 is installed OR chromium-76.0.3809.100-lp151.2.20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.8.0esr-0.8 is installed OR MozillaFirefox-translations-24.8.0esr-0.8 is installed OR libfreebl3-3.16.4-0.8 is installed OR libfreebl3-32bit-3.16.4-0.8 is installed OR libsoftokn3-3.16.4-0.8 is installed OR libsoftokn3-32bit-3.16.4-0.8 is installed OR mozilla-nspr-4.10.7-0.3 is installed OR mozilla-nspr-32bit-4.10.7-0.3 is installed OR mozilla-nss-3.16.4-0.8 is installed OR mozilla-nss-32bit-3.16.4-0.8 is installed OR mozilla-nss-tools-3.16.4-0.8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libpng12-0-1.2.31-5.35 is installed OR libpng12-0-32bit-1.2.31-5.35 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libSoundTouch0-1.7.1-5.6 is installed OR libSoundTouch0-32bit-1.7.1-5.6 is installed OR soundtouch-1.7.1-5.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND libvirglrenderer0-0.5.0-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libfreebl3-3.19.2.1-29 is installed OR libfreebl3-32bit-3.19.2.1-29 is installed OR libfreebl3-hmac-3.19.2.1-29 is installed OR libfreebl3-hmac-32bit-3.19.2.1-29 is installed OR libsoftokn3-3.19.2.1-29 is installed OR libsoftokn3-32bit-3.19.2.1-29 is installed OR libsoftokn3-hmac-3.19.2.1-29 is installed OR libsoftokn3-hmac-32bit-3.19.2.1-29 is installed OR mozilla-nss-3.19.2.1-29 is installed OR mozilla-nss-32bit-3.19.2.1-29 is installed OR mozilla-nss-certs-3.19.2.1-29 is installed OR mozilla-nss-certs-32bit-3.19.2.1-29 is installed OR mozilla-nss-sysinit-3.19.2.1-29 is installed OR mozilla-nss-sysinit-32bit-3.19.2.1-29 is installed OR mozilla-nss-tools-3.19.2.1-29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND unrar-5.0.14-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information bzip2-1.0.6-29 is installed OR bzip2-doc-1.0.6-29 is installed OR libbz2-1-1.0.6-29 is installed OR libbz2-1-32bit-1.0.6-29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libldap-2_4-2-2.4.41-18.83.1 is installed OR libldap-2_4-2-32bit-2.4.41-18.83.1 is installed OR openldap2-2.4.41-18.83.1 is installed OR openldap2-back-meta-2.4.41-18.83.1 is installed OR openldap2-client-2.4.41-18.83.1 is installed OR openldap2-doc-2.4.41-18.83.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_101-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_27-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information gnutls-3.2.15-18.6 is installed OR libgnutls-openssl27-3.2.15-18.6 is installed OR libgnutls28-3.2.15-18.6 is installed OR libgnutls28-32bit-3.2.15-18.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-36 is installed OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libmysqlclient18-10.0.40.2-29.35 is installed OR libmysqlclient18-32bit-10.0.40.2-29.35 is installed OR mariadb-10.0.40.2-29.35 is installed OR mariadb-client-10.0.40.2-29.35 is installed OR mariadb-errormessages-10.0.40.2-29.35 is installed OR mariadb-tools-10.0.40.2-29.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libprocps3-3.3.9-11.14 is installed OR procps-3.3.9-11.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache2-mod_apparmor-2.8.2-49 is installed OR apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information kernel-default-3.12.74-60.64.60 is installed OR kernel-default-base-3.12.74-60.64.60 is installed OR kernel-default-devel-3.12.74-60.64.60 is installed OR kernel-devel-3.12.74-60.64.60 is installed OR kernel-macros-3.12.74-60.64.60 is installed OR kernel-source-3.12.74-60.64.60 is installed OR kernel-syms-3.12.74-60.64.60 is installed OR kernel-xen-3.12.74-60.64.60 is installed OR kernel-xen-base-3.12.74-60.64.60 is installed OR kernel-xen-devel-3.12.74-60.64.60 is installed OR kgraft-patch-3_12_74-60_64_60-default-1-2 is installed OR kgraft-patch-3_12_74-60_64_60-xen-1-2 is installed OR kgraft-patch-SLE12-SP1_Update_21-1-2 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information python-oslo.cache-1.14.1-3.3 is installed OR python-oslo.concurrency-3.14.1-3.3 is installed OR python-oslo.db-4.13.6-3.3 is installed OR python-oslo.log-3.16.1-3.3 is installed OR python-oslo.messaging-5.10.2-3.6 is installed OR python-oslo.middleware-3.19.1-4.3 is installed OR python-oslo.serialization-2.13.2-3.3 is installed OR python-oslo.service-1.16.1-3.3 is installed OR python-oslo.utils-3.16.1-3.3 is installed OR python-oslo.versionedobjects-1.17.1-3.3 is installed OR python-oslo.vmware-2.14.1-3.3 is installed OR python-oslotest-2.10.1-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-Twisted-15.2.1-9.8 is installed
BACK