OVAL Reference oval:org.opensuse.security:def:60468

Oval Definition:

oval:org.opensuse.security:def:60468

Revision Date:	2021-03-03	Version:	1
Title:	Security update for openldap2 (Important)
Description:	This update for openldap2 fixes the following issues: - bsc#1182408 CVE-2020-36230 - an assertion failure in slapd in the X.509 DN parsing in decode.c ber_next_element, resulting in denial of service. - bsc#1182411 CVE-2020-36229 - ldap_X509dn2bv crash in the X.509 DN parsing in ad_keystring, resulting in denial of service. - bsc#1182412 CVE-2020-36228 - integer underflow leading to crash in the Certificate List Exact Assertion processing, resulting in denial of service. - bsc#1182413 CVE-2020-36227 - infinite loop in slapd with the cancel_extop Cancel operation, resulting in denial of service. - bsc#1182416 CVE-2020-36225 - double free and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182417 CVE-2020-36224 - invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182415 CVE-2020-36226 - memch->bv_len miscalculation and slapd crash in the saslAuthzTo processing, resulting in denial of service. - bsc#1182419 CVE-2020-36222 - assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service. - bsc#1182420 CVE-2020-36221 - slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service (schema_init.c serialNumberAndIssuerCheck). - bsc#1182418 CVE-2020-36223 - slapd crash in the Values Return Filter control handling, resulting in denial of service (double free and out-of-bounds read). - bsc#1182279 CVE-2021-27212 - an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime.
Family:	unix	Class:	patch
Status:		Reference(s):	1012382 1024718 1031717 1035432 1040621 1041740 1045330 1054171 1056415 1066223 1068032 1068054 1068951 1070404 1073311 1075428 1076049 1078583 1079152 1080542 1080656 1081500 1081514 1082153 1082504 1082979 1085185 1085308 1085970 1086400 1086716 1087036 1087086 1088871 1090435 1090534 1090734 1090955 1091594 1094532 1095042 1095147 1096037 1096140 1096214 1096242 1096281 1096751 1096982 1097234 1097356 1098009 1098012 1105435 1106061 1123161 1125674 1127034 1128977 1130972 1133860 1134399 1135335 1135365 1137584 1139358 1139826 1140652 1140903 1140945 1141181 1141401 1141402 1141452 1141453 1141454 1142023 1142254 1142857 1143045 1143048 1143189 1143191 1143333 1144257 1144273 1144288 1144524 1144903 1144920 1145920 1145922 1146848 1152856 1153108 1153158 1153161 1154212 1154824 1156317 1156321 1156331 1161799 1161951 1164871 1166847 1169025 1169511 1169625 1170383 1170618 1170620 1171098 1171195 1171202 1171218 1171219 1171689 1171698 1172032 1172221 1172317 1182279 1182408 1182411 1182412 1182413 1182415 1182416 1182417 1182418 1182419 1182420 971975 973378 978907 CVE-2013-1762 CVE-2014-0016 CVE-2015-1038 CVE-2015-3644 CVE-2015-5191 CVE-2016-2335 CVE-2017-17741 CVE-2017-18241 CVE-2017-18249 CVE-2017-6891 CVE-2017-7555 CVE-2018-1000654 CVE-2018-12233 CVE-2018-20855 CVE-2018-20856 CVE-2018-20856 CVE-2018-3665 CVE-2018-5848 CVE-2018-8088 CVE-2019-10207 CVE-2019-10220 CVE-2019-1125 CVE-2019-11810 CVE-2019-13272 CVE-2019-13456 CVE-2019-13631 CVE-2019-13648 CVE-2019-14283 CVE-2019-14284 CVE-2019-15117 CVE-2019-15118 CVE-2019-15239 CVE-2019-17133 CVE-2019-17185 CVE-2019-2894 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2019-3819 CVE-2020-0543 CVE-2020-10757 CVE-2020-12114 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12656 CVE-2020-2756 CVE-2020-2757 CVE-2020-2773 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-36221 CVE-2020-36222 CVE-2020-36223 CVE-2020-36224 CVE-2020-36225 CVE-2020-36226 CVE-2020-36227 CVE-2020-36228 CVE-2020-36229 CVE-2020-36230 CVE-2020-6796 CVE-2020-6797 CVE-2020-6798 CVE-2020-6799 CVE-2020-6800 CVE-2021-27212 SUSE-SU-2018:0650-1 SUSE-SU-2018:1744-1 SUSE-SU-2018:1772-1 SUSE-SU-2019:1379-1 SUSE-SU-2019:2263-1 SUSE-SU-2019:3084-1 SUSE-SU-2020:0384-1 SUSE-SU-2020:1018-1 SUSE-SU-2020:1571-1 SUSE-SU-2020:1596-1 SUSE-SU-2021:0693-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information ctdb-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR ctdb-pcp-pmda-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR ctdb-tests-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libdcerpc-binding0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libdcerpc-binding0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libdcerpc-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libdcerpc-samr-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libdcerpc-samr0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libdcerpc-samr0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libdcerpc0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libdcerpc0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libndr-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libndr-krb5pac-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libndr-krb5pac0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libndr-krb5pac0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libndr-nbt-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libndr-nbt0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libndr-nbt0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libndr-standard-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libndr-standard0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libndr-standard0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libndr0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libndr0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libnetapi-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libnetapi0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libnetapi0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-credentials-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-credentials0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-credentials0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-errors-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-errors0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-errors0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-hostconfig-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-hostconfig0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-hostconfig0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-passdb-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-passdb0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-passdb0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-policy-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-policy0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-policy0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-util-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-util0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamba-util0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamdb-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamdb0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsamdb0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsmbclient-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsmbclient0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsmbclient0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsmbconf-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsmbconf0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsmbconf0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsmbldap-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsmbldap2-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libsmbldap2-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libtevent-util-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libtevent-util0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libtevent-util0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libwbclient-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libwbclient0-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR libwbclient0-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-ceph-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-client-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-client-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-core-devel-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-doc-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-dsdb-modules-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-kdc-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-kdc-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-libs-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-libs-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-pidl-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-python-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-test-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-winbind-4.7.11+git.186.d75219614c3-lp150.3.18 is installed OR samba-winbind-32bit-4.7.11+git.186.d75219614c3-lp150.3.18 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information ncat-7.70-lp151.3.3 is installed OR ndiff-7.70-lp151.3.3 is installed OR nmap-7.70-lp151.3.3 is installed OR nping-7.70-lp151.3.3 is installed OR zenmap-7.70-lp151.3.3 is installed
Definition Synopsis
openSUSE Leap 15.2 is installed AND python-ipaddress-1.0.18-lp152.4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libvmtools0-10.1.5-2 is installed OR open-vm-tools-10.1.5-2 is installed OR open-vm-tools-desktop-10.1.5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_7_0-openjdk-1.7.0.261-43.38 is installed OR java-1_7_0-openjdk-demo-1.7.0.261-43.38 is installed OR java-1_7_0-openjdk-devel-1.7.0.261-43.38 is installed OR java-1_7_0-openjdk-headless-1.7.0.261-43.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_100-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_27-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information freeradius-server-3.0.15-2.14 is installed OR freeradius-server-doc-3.0.15-2.14 is installed OR freeradius-server-krb5-3.0.15-2.14 is installed OR freeradius-server-ldap-3.0.15-2.14 is installed OR freeradius-server-libs-3.0.15-2.14 is installed OR freeradius-server-mysql-3.0.15-2.14 is installed OR freeradius-server-perl-3.0.15-2.14 is installed OR freeradius-server-postgresql-3.0.15-2.14 is installed OR freeradius-server-python-3.0.15-2.14 is installed OR freeradius-server-sqlite-3.0.15-2.14 is installed OR freeradius-server-utils-3.0.15-2.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ucode-intel-20180807-13.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information dpdk-17.11.4-3 is installed OR dpdk-kmp-default-17.11.4_k4.12.14_94.41-3 is installed OR dpdk-thunderx-17.11.4-3 is installed OR dpdk-thunderx-kmp-default-17.11.4_k4.12.14_94.41-3 is installed OR dpdk-tools-17.11.4-3 is installed OR libdpdk-17_11-17.11.4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information MozillaFirefox-78.1.0-112.8 is installed OR MozillaFirefox-devel-78.1.0-112.8 is installed OR MozillaFirefox-translations-common-78.1.0-112.8 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND libldap-2_4-2-2.4.41-18.83.1 is installed OR libldap-2_4-2-32bit-2.4.41-18.83.1 is installed OR openldap2-2.4.41-18.83.1 is installed OR openldap2-back-meta-2.4.41-18.83.1 is installed OR openldap2-client-2.4.41-18.83.1 is installed OR openldap2-doc-2.4.41-18.83.1 is installed OR openldap2-ppolicy-check-password-1.2-18.83.1 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND libldap-2_4-2-2.4.41-18.83.1 is installed OR libldap-2_4-2-32bit-2.4.41-18.83.1 is installed OR openldap2-2.4.41-18.83.1 is installed OR openldap2-back-meta-2.4.41-18.83.1 is installed OR openldap2-client-2.4.41-18.83.1 is installed OR openldap2-doc-2.4.41-18.83.1 is installed OR openldap2-ppolicy-check-password-1.2-18.83.1 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND slf4j-1.7.12-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND python-urllib3-1.23-3.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_7_0-openjdk-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-demo-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-devel-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-headless-1.7.0.241-43.30 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information grub2-2.02-12.31 is installed OR grub2-i386-pc-2.02-12.31 is installed OR grub2-snapper-plugin-2.02-12.31 is installed OR grub2-systemd-sleep-plugin-2.02-12.31 is installed OR grub2-x86_64-efi-2.02-12.31 is installed OR grub2-x86_64-xen-2.02-12.31 is installed

BACK