Revision Date: | 2021-03-03 | Version: | 1 |
Title: | Security update for openldap2 (Important) |
Description: |
This update for openldap2 fixes the following issues:
- bsc#1182408 CVE-2020-36230 - an assertion failure in slapd in the X.509 DN parsing in decode.c ber_next_element, resulting in denial of service. - bsc#1182411 CVE-2020-36229 - ldap_X509dn2bv crash in the X.509 DN parsing in ad_keystring, resulting in denial of service. - bsc#1182412 CVE-2020-36228 - integer underflow leading to crash in the Certificate List Exact Assertion processing, resulting in denial of service. - bsc#1182413 CVE-2020-36227 - infinite loop in slapd with the cancel_extop Cancel operation, resulting in denial of service. - bsc#1182416 CVE-2020-36225 - double free and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182417 CVE-2020-36224 - invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182415 CVE-2020-36226 - memch->bv_len miscalculation and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182419 CVE-2020-36222 - assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service. - bsc#1182420 CVE-2020-36221 - slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service (schema_init.c serialNumberAndIssuerCheck). - bsc#1182418 CVE-2020-36223 - slapd crash in the Values Return Filter control handling, resulting in denial of service (double free and out-of-bounds read). - bsc#1182279 CVE-2021-27212 - an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime.
|
Family: | unix | Class: | patch |
Status: | | Reference(s): | 1000435 1001765 1001951 1056450 1057389 1068664 1079300 1104205 1108630 1108631 1108632 1109209 1120281 1150011 1182279 1182408 1182411 1182412 1182413 1182415 1182416 1182417 1182418 1182419 1182420 894370 928292 932894 952051 953817 954374 954980 967082 970293 982210 982211 982251 984906 987173 987857 987887 988311 990074 996269 CVE-2010-3170 CVE-2011-3200 CVE-2011-3389 CVE-2011-3640 CVE-2013-0743 CVE-2013-0791 CVE-2013-1620 CVE-2013-1739 CVE-2013-1740 CVE-2013-4758 CVE-2013-5605 CVE-2013-5653 CVE-2013-6370 CVE-2013-6371 CVE-2014-1492 CVE-2014-1562 CVE-2014-1567 CVE-2014-1568 CVE-2014-1569 CVE-2014-3634 CVE-2014-3683 CVE-2015-3243 CVE-2015-4000 CVE-2015-7181 CVE-2015-7182 CVE-2015-7981 CVE-2015-8023 CVE-2015-8126 CVE-2015-8853 CVE-2016-10163 CVE-2016-10214 CVE-2016-1238 CVE-2016-2381 CVE-2016-6185 CVE-2016-7796 CVE-2016-7978 CVE-2016-7979 CVE-2017-1000158 CVE-2017-1000251 CVE-2017-14062 CVE-2017-5580 CVE-2017-5937 CVE-2017-5956 CVE-2017-5957 CVE-2017-5993 CVE-2017-5994 CVE-2017-6209 CVE-2017-6210 CVE-2017-6317 CVE-2017-6355 CVE-2017-6386 CVE-2018-1000030 CVE-2018-1000845 CVE-2018-14526 CVE-2018-17096 CVE-2018-17097 CVE-2018-17098 CVE-2019-14822 CVE-2020-36221 CVE-2020-36222 CVE-2020-36223 CVE-2020-36224 CVE-2020-36225 CVE-2020-36226 CVE-2020-36227 CVE-2020-36228 CVE-2020-36229 CVE-2020-36230 CVE-2021-27212 SUSE-SU-2015:2017-1 SUSE-SU-2015:2186-1 SUSE-SU-2016:2263-1 SUSE-SU-2016:2476-1 SUSE-SU-2016:2492-1 SUSE-SU-2017:2459-1 SUSE-SU-2018:0878-1 SUSE-SU-2018:1372-1 SUSE-SU-2018:3606-1 SUSE-SU-2019:0179-1 SUSE-SU-2019:1088-1 SUSE-SU-2019:2389-1 SUSE-SU-2021:0693-1
|
Platform(s): | openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 9
| Product(s): | |
Definition Synopsis |
openSUSE Leap 15.0 is installed AND Package Information
gpgme-1.10.0-lp150.2 is installed
OR libgpgme11-1.10.0-lp150.2 is installed
OR libgpgmepp6-1.10.0-lp150.2 is installed
OR libqgpgme7-1.10.0-lp150.2 is installed
|
Definition Synopsis |
openSUSE Leap 15.1 is installed
AND Package Information
chromedriver-76.0.3809.100-lp151.2.20 is installed
OR chromium-76.0.3809.100-lp151.2.20 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 11 SP3 is installed
AND Package Information
MozillaFirefox-24.8.0esr-0.8 is installed
OR MozillaFirefox-translations-24.8.0esr-0.8 is installed
OR libfreebl3-3.16.4-0.8 is installed
OR libfreebl3-32bit-3.16.4-0.8 is installed
OR libsoftokn3-3.16.4-0.8 is installed
OR libsoftokn3-32bit-3.16.4-0.8 is installed
OR mozilla-nspr-4.10.7-0.3 is installed
OR mozilla-nspr-32bit-4.10.7-0.3 is installed
OR mozilla-nss-3.16.4-0.8 is installed
OR mozilla-nss-32bit-3.16.4-0.8 is installed
OR mozilla-nss-tools-3.16.4-0.8 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 11 SP4 is installed
AND Package Information
libpng12-0-1.2.31-5.35 is installed
OR libpng12-0-32bit-1.2.31-5.35 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 SP3 is installed
AND Package Information
libSoundTouch0-1.7.1-5.6 is installed
OR libSoundTouch0-32bit-1.7.1-5.6 is installed
OR soundtouch-1.7.1-5.6 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 SP4 is installed
AND libvirglrenderer0-0.5.0-11 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP1 is installed
AND Package Information
libfreebl3-3.19.2.1-29 is installed
OR libfreebl3-32bit-3.19.2.1-29 is installed
OR libfreebl3-hmac-3.19.2.1-29 is installed
OR libfreebl3-hmac-32bit-3.19.2.1-29 is installed
OR libsoftokn3-3.19.2.1-29 is installed
OR libsoftokn3-32bit-3.19.2.1-29 is installed
OR libsoftokn3-hmac-3.19.2.1-29 is installed
OR libsoftokn3-hmac-32bit-3.19.2.1-29 is installed
OR mozilla-nss-3.19.2.1-29 is installed
OR mozilla-nss-32bit-3.19.2.1-29 is installed
OR mozilla-nss-certs-3.19.2.1-29 is installed
OR mozilla-nss-certs-32bit-3.19.2.1-29 is installed
OR mozilla-nss-sysinit-3.19.2.1-29 is installed
OR mozilla-nss-sysinit-32bit-3.19.2.1-29 is installed
OR mozilla-nss-tools-3.19.2.1-29 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP1-LTSS is installed
AND unrar-5.0.14-3 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2 is installed
AND Package Information
bzip2-1.0.6-29 is installed
OR bzip2-doc-1.0.6-29 is installed
OR libbz2-1-1.0.6-29 is installed
OR libbz2-1-32bit-1.0.6-29 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2-BCL is installed
AND Package Information
libldap-2_4-2-2.4.41-18.83.1 is installed
OR libldap-2_4-2-32bit-2.4.41-18.83.1 is installed
OR openldap2-2.4.41-18.83.1 is installed
OR openldap2-back-meta-2.4.41-18.83.1 is installed
OR openldap2-client-2.4.41-18.83.1 is installed
OR openldap2-doc-2.4.41-18.83.1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
AND Package Information
kgraft-patch-4_4_121-92_101-default-2-2 is installed
OR kgraft-patch-SLE12-SP2_Update_27-2-2 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2-LTSS is installed
AND Package Information
gnutls-3.2.15-18.6 is installed
OR libgnutls-openssl27-3.2.15-18.6 is installed
OR libgnutls28-3.2.15-18.6 is installed
OR libgnutls28-32bit-3.2.15-18.6 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
aaa_base-13.2+git20140911.61c1681-36 is installed
OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-BCL is installed
AND Package Information
libmysqlclient18-10.0.40.2-29.35 is installed
OR libmysqlclient18-32bit-10.0.40.2-29.35 is installed
OR mariadb-10.0.40.2-29.35 is installed
OR mariadb-client-10.0.40.2-29.35 is installed
OR mariadb-errormessages-10.0.40.2-29.35 is installed
OR mariadb-tools-10.0.40.2-29.35 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
AND squid-3.5.21-26.17 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-LTSS is installed
AND Package Information
libsolv-0.6.36-2.27.19 is installed
OR libsolv-tools-0.6.36-2.27.19 is installed
OR libzypp-16.20.2-27.60 is installed
OR perl-solv-0.6.36-2.27.19 is installed
OR python-solv-0.6.36-2.27.19 is installed
OR zypper-1.13.54-18.40 is installed
OR zypper-log-1.13.54-18.40 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
AND Package Information
libprocps3-3.3.9-11.14 is installed
OR procps-3.3.9-11.14 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP4 is installed
AND Package Information
apache2-mod_apparmor-2.8.2-49 is installed
OR apparmor-docs-2.8.2-49 is installed
OR apparmor-parser-2.8.2-49 is installed
OR apparmor-profiles-2.8.2-49 is installed
OR apparmor-utils-2.8.2-49 is installed
OR libapparmor1-2.8.2-49 is installed
OR libapparmor1-32bit-2.8.2-49 is installed
OR pam_apparmor-2.8.2-49 is installed
OR pam_apparmor-32bit-2.8.2-49 is installed
OR perl-apparmor-2.8.2-49 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud 6 is installed
AND Package Information
kernel-default-3.12.74-60.64.60 is installed
OR kernel-default-base-3.12.74-60.64.60 is installed
OR kernel-default-devel-3.12.74-60.64.60 is installed
OR kernel-devel-3.12.74-60.64.60 is installed
OR kernel-macros-3.12.74-60.64.60 is installed
OR kernel-source-3.12.74-60.64.60 is installed
OR kernel-syms-3.12.74-60.64.60 is installed
OR kernel-xen-3.12.74-60.64.60 is installed
OR kernel-xen-base-3.12.74-60.64.60 is installed
OR kernel-xen-devel-3.12.74-60.64.60 is installed
OR kgraft-patch-3_12_74-60_64_60-default-1-2 is installed
OR kgraft-patch-3_12_74-60_64_60-xen-1-2 is installed
OR kgraft-patch-SLE12-SP1_Update_21-1-2 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud 7 is installed
AND Package Information
python-oslo.cache-1.14.1-3.3 is installed
OR python-oslo.concurrency-3.14.1-3.3 is installed
OR python-oslo.db-4.13.6-3.3 is installed
OR python-oslo.log-3.16.1-3.3 is installed
OR python-oslo.messaging-5.10.2-3.6 is installed
OR python-oslo.middleware-3.19.1-4.3 is installed
OR python-oslo.serialization-2.13.2-3.3 is installed
OR python-oslo.service-1.16.1-3.3 is installed
OR python-oslo.utils-3.16.1-3.3 is installed
OR python-oslo.versionedobjects-1.17.1-3.3 is installed
OR python-oslo.vmware-2.14.1-3.3 is installed
OR python-oslotest-2.10.1-3.3 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud 9 is installed
AND python-Twisted-15.2.1-9.8 is installed
|