Oval Definition:oval:org.opensuse.security:def:59858
Revision Date:2021-03-03Version:1
Title:Security update for openldap2 (Important)
Description:

This update for openldap2 fixes the following issues:

- bsc#1182408 CVE-2020-36230 - an assertion failure in slapd in the X.509 DN parsing in decode.c ber_next_element, resulting in denial of service. - bsc#1182411 CVE-2020-36229 - ldap_X509dn2bv crash in the X.509 DN parsing in ad_keystring, resulting in denial of service. - bsc#1182412 CVE-2020-36228 - integer underflow leading to crash in the Certificate List Exact Assertion processing, resulting in denial of service. - bsc#1182413 CVE-2020-36227 - infinite loop in slapd with the cancel_extop Cancel operation, resulting in denial of service. - bsc#1182416 CVE-2020-36225 - double free and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182417 CVE-2020-36224 - invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182415 CVE-2020-36226 - memch->bv_len miscalculation and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182419 CVE-2020-36222 - assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service. - bsc#1182420 CVE-2020-36221 - slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service (schema_init.c serialNumberAndIssuerCheck). - bsc#1182418 CVE-2020-36223 - slapd crash in the Values Return Filter control handling, resulting in denial of service (double free and out-of-bounds read). - bsc#1182279 CVE-2021-27212 - an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime.
Family:unixClass:patch
Status:Reference(s):1034481
1034482
1034674
1034678
1043898
1043899
1051222
1067203
1072193
1077999
1080919
1087932
1102682
1106923
1108835
1109252
1110445
1111278
1112024
1113083
1113632
1113665
1119553
1119554
1119555
1119556
1119557
1119558
1119947
1121563
1125352
1126056
1127557
1128657
1130230
1132348
1132400
1132721
1139083
1144903
1145092
1146358
1146359
1153108
1153158
1153161
1160398
1169511
1177513
1177943
1182279
1182408
1182411
1182412
1182413
1182415
1182416
1182417
1182418
1182419
1182420
929629
955942
985657
990636
CVE-2009-5029
CVE-2012-3406
CVE-2012-4412
CVE-2013-0242
CVE-2013-1914
CVE-2013-2207
CVE-2013-4237
CVE-2013-4332
CVE-2013-4458
CVE-2013-7423
CVE-2014-0475
CVE-2014-4043
CVE-2014-5119
CVE-2014-6040
CVE-2014-7817
CVE-2014-8121
CVE-2014-8146
CVE-2014-8147
CVE-2014-9402
CVE-2014-9761
CVE-2015-1472
CVE-2015-1473
CVE-2015-1781
CVE-2015-7547
CVE-2015-8776
CVE-2015-8777
CVE-2015-8778
CVE-2015-8779
CVE-2016-1234
CVE-2016-3075
CVE-2016-3189
CVE-2016-3706
CVE-2016-4429
CVE-2016-6293
CVE-2017-1000366
CVE-2017-11185
CVE-2017-14952
CVE-2017-15422
CVE-2017-17484
CVE-2017-7867
CVE-2017-7868
CVE-2017-7960
CVE-2017-7961
CVE-2017-8834
CVE-2017-8871
CVE-2018-15686
CVE-2018-15688
CVE-2018-16884
CVE-2018-4437
CVE-2018-4438
CVE-2018-4441
CVE-2018-4442
CVE-2018-4443
CVE-2018-4464
CVE-2018-5390
CVE-2018-6954
CVE-2019-10208
CVE-2019-10220
CVE-2019-12900
CVE-2019-17133
CVE-2019-3842
CVE-2019-6454
CVE-2019-8675
CVE-2019-8696
CVE-2020-14779
CVE-2020-14781
CVE-2020-14782
CVE-2020-14792
CVE-2020-14796
CVE-2020-14797
CVE-2020-14798
CVE-2020-14803
CVE-2020-25645
CVE-2020-2754
CVE-2020-2755
CVE-2020-2756
CVE-2020-2757
CVE-2020-2773
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830
CVE-2020-36221
CVE-2020-36222
CVE-2020-36223
CVE-2020-36224
CVE-2020-36225
CVE-2020-36226
CVE-2020-36227
CVE-2020-36228
CVE-2020-36229
CVE-2020-36230
CVE-2021-27212
SUSE-SU-2017:2143-1
SUSE-SU-2018:3767-1
SUSE-SU-2019:0146-1
SUSE-SU-2019:1265-1
SUSE-SU-2019:1468-1
SUSE-SU-2019:1955-1
SUSE-SU-2019:3057-1
SUSE-SU-2020:3310-1
SUSE-SU-2021:0693-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-LTSS
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND lftp-4.8.3-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libtasn1-4.13-lp151.4.3 is installed
  • OR libtasn1-6-4.13-lp151.4.3 is installed
  • OR libtasn1-6-32bit-4.13-lp151.4.3 is installed
  • OR libtasn1-devel-4.13-lp151.4.3 is installed
  • OR libtasn1-devel-32bit-4.13-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • icu-52.1-8.7 is installed
  • OR libicu-doc-52.1-8.7 is installed
  • OR libicu52_1-52.1-8.7 is installed
  • OR libicu52_1-32bit-52.1-8.7 is installed
  • OR libicu52_1-data-52.1-8.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • glibc-2.22-61 is installed
  • OR glibc-32bit-2.22-61 is installed
  • OR glibc-devel-2.22-61 is installed
  • OR glibc-devel-32bit-2.22-61 is installed
  • OR glibc-html-2.22-61 is installed
  • OR glibc-i18ndata-2.22-61 is installed
  • OR glibc-info-2.22-61 is installed
  • OR glibc-locale-2.22-61 is installed
  • OR glibc-locale-32bit-2.22-61 is installed
  • OR glibc-profile-2.22-61 is installed
  • OR glibc-profile-32bit-2.22-61 is installed
  • OR nscd-2.22-61 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libsolv-0.6.36-2.30 is installed
  • OR libsolv-devel-0.6.36-2.30 is installed
  • OR libsolv-tools-0.6.36-2.30 is installed
  • OR perl-solv-0.6.36-2.30 is installed
  • OR python-solv-0.6.36-2.30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_176-94_88-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_24-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_97-default-10-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_26-10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND perl-Archive-Zip-1.34-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND autofs-5.0.9-28.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • libldap-2_4-2-2.4.41-18.83.1 is installed
  • OR libldap-2_4-2-32bit-2.4.41-18.83.1 is installed
  • OR openldap2-2.4.41-18.83.1 is installed
  • OR openldap2-back-meta-2.4.41-18.83.1 is installed
  • OR openldap2-client-2.4.41-18.83.1 is installed
  • OR openldap2-doc-2.4.41-18.83.1 is installed
  • OR openldap2-ppolicy-check-password-1.2-18.83.1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • bzip2-1.0.6-30.5 is installed
  • OR bzip2-doc-1.0.6-30.5 is installed
  • OR libbz2-1-1.0.6-30.5 is installed
  • OR libbz2-1-32bit-1.0.6-30.5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-Django1-1.11.20-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • cups-1.7.5-20.26 is installed
  • OR cups-client-1.7.5-20.26 is installed
  • OR cups-libs-1.7.5-20.26 is installed
  • OR cups-libs-32bit-1.7.5-20.26 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND golang-github-prometheus-node_exporter-0.18.1-1.6 is installed
    • BACK