OVAL Reference oval:org.opensuse.security:def:60723

Oval Definition:

oval:org.opensuse.security:def:60723

Revision Date:	2020-12-01	Version:	1
Title:	Security update for openldap2 (Important)
Description:	This update for openldap2 fixes the following issues: - CVE-2020-8023: Fixed a potential local privilege escalation from ldap to root when OPENLDAP_CONFIG_BACKEND='ldap' was used (bsc#1172698). - Changed DB_CONFIG to root:ldap permissions (bsc#1172704). - Fixed an issue where slapd becomes unresponsive after many failed login/bind attempts(bsc#1170715).
Family:	unix	Class:	patch
Status:		Reference(s):	1012382 1021364 1026649 1026650 1027282 1041090 1042670 1056127 1056128 1056129 1056131 1056132 1056136 1057555 1063026 1068390 1073269 1073748 1078326 1078485 1081750 1082863 1084536 1084650 1085042 1085970 1086001 1094825 1096547 1099597 1099999 1100000 1100001 1102517 1102715 1102870 1105292 1105392 1105536 1106016 1106095 1106293 1106509 1106511 1107735 1108308 1108399 1108498 1108813 1109333 1110711 1110837 1133719 1138301 1138303 1138734 1149792 1153830 1154212 1155094 1158328 1158442 1159035 1160467 1160468 1162224 1162367 1162825 1165894 1170411 1170446 1170715 1171561 1171924 1172402 1172698 1172704 1173369 1173592 1173594 1178971 945401 CVE-2016-10165 CVE-2017-13728 CVE-2017-13729 CVE-2017-13730 CVE-2017-13731 CVE-2017-13732 CVE-2017-13733 CVE-2017-16837 CVE-2018-10938 CVE-2018-13093 CVE-2018-13094 CVE-2018-13095 CVE-2018-14617 CVE-2018-15572 CVE-2018-16276 CVE-2018-16435 CVE-2018-17182 CVE-2018-18386 CVE-2018-6554 CVE-2018-6555 CVE-2018-7480 CVE-2018-7757 CVE-2018-8088 CVE-2018-9363 CVE-2018-9516 CVE-2019-10161 CVE-2019-10167 CVE-2019-11745 CVE-2019-13722 CVE-2019-14896 CVE-2019-14897 CVE-2019-17005 CVE-2019-17008 CVE-2019-17009 CVE-2019-17010 CVE-2019-17011 CVE-2019-17012 CVE-2019-17631 CVE-2019-18348 CVE-2019-2933 CVE-2019-2945 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2975 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2996 CVE-2019-2999 CVE-2019-9674 CVE-2020-12405 CVE-2020-12406 CVE-2020-12410 CVE-2020-15011 CVE-2020-8023 CVE-2020-8492 CVE-2020-8695 CVE-2020-8696 CVE-2020-8698 SUSE-SU-2017:3090-1 SUSE-SU-2018:0120-1 SUSE-SU-2018:1744-1 SUSE-SU-2019:2227-1 SUSE-SU-2019:3347-1 SUSE-SU-2020:0024-1 SUSE-SU-2020:1524-1 SUSE-SU-2020:1563-1 SUSE-SU-2020:1859-1 SUSE-SU-2020:2048-1 SUSE-SU-2020:3343-1 SUSE-SU-2020:3514-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information java-11-openjdk-11.0.1.0-lp150.2.6 is installed OR java-11-openjdk-accessibility-11.0.1.0-lp150.2.6 is installed OR java-11-openjdk-demo-11.0.1.0-lp150.2.6 is installed OR java-11-openjdk-devel-11.0.1.0-lp150.2.6 is installed OR java-11-openjdk-headless-11.0.1.0-lp150.2.6 is installed OR java-11-openjdk-javadoc-11.0.1.0-lp150.2.6 is installed OR java-11-openjdk-jmods-11.0.1.0-lp150.2.6 is installed OR java-11-openjdk-src-11.0.1.0-lp150.2.6 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libpython2_7-1_0-2.7.14-lp151.10.3 is installed OR libpython2_7-1_0-32bit-2.7.14-lp151.10.3 is installed OR python-2.7.14-lp151.10.3 is installed OR python-32bit-2.7.14-lp151.10.3 is installed OR python-base-2.7.14-lp151.10.3 is installed OR python-base-32bit-2.7.14-lp151.10.3 is installed OR python-curses-2.7.14-lp151.10.3 is installed OR python-demo-2.7.14-lp151.10.3 is installed OR python-devel-2.7.14-lp151.10.3 is installed OR python-doc-2.7.14-lp151.10.3 is installed OR python-doc-pdf-2.7.14-lp151.10.3 is installed OR python-gdbm-2.7.14-lp151.10.3 is installed OR python-idle-2.7.14-lp151.10.3 is installed OR python-tk-2.7.14-lp151.10.3 is installed OR python-xml-2.7.14-lp151.10.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND tboot-20160518_1.9.4-7.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpython2_7-1_0-2.7.17-28.42 is installed OR libpython2_7-1_0-32bit-2.7.17-28.42 is installed OR python-2.7.17-28.42 is installed OR python-32bit-2.7.17-28.42 is installed OR python-base-2.7.17-28.42 is installed OR python-base-32bit-2.7.17-28.42 is installed OR python-curses-2.7.17-28.42 is installed OR python-demo-2.7.17-28.42 is installed OR python-devel-2.7.17-28.42 is installed OR python-doc-2.7.17-28.42 is installed OR python-doc-pdf-2.7.17-28.42 is installed OR python-gdbm-2.7.17-28.42 is installed OR python-idle-2.7.17-28.42 is installed OR python-rpm-macros-20200207.5feb6c1-3.19 is installed OR python-tk-2.7.17-28.42 is installed OR python-xml-2.7.17-28.42 is installed OR shared-python-startup-0.1-1.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-8-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information MozillaFirefox-68.3.0-109.98 is installed OR MozillaFirefox-translations-common-68.3.0-109.98 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libecpg6-10.5-1.3 is installed OR libpq5-10.5-1.3 is installed OR libpq5-32bit-10.5-1.3 is installed OR postgresql-init-10-17.20 is installed OR postgresql10-10.5-1.3 is installed OR postgresql10-contrib-10.5-1.3 is installed OR postgresql10-docs-10.5-1.3 is installed OR postgresql10-libs-10.5-1.3 is installed OR postgresql10-server-10.5-1.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cpp48-4.8.5-31.17 is installed OR gcc48-4.8.5-31.17 is installed OR gcc48-32bit-4.8.5-31.17 is installed OR gcc48-c++-4.8.5-31.17 is installed OR gcc48-info-4.8.5-31.17 is installed OR gcc48-locale-4.8.5-31.17 is installed OR libasan0-4.8.5-31.17 is installed OR libasan0-32bit-4.8.5-31.17 is installed OR libstdc++48-devel-4.8.5-31.17 is installed OR libstdc++48-devel-32bit-4.8.5-31.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.4-2.59 is installed OR libwebkit2gtk-4_0-37-2.28.4-2.59 is installed OR libwebkit2gtk3-lang-2.28.4-2.59 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.4-2.59 is installed OR typelib-1_0-WebKit2-4_0-2.28.4-2.59 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.28.4-2.59 is installed OR webkit2gtk-4_0-injected-bundles-2.28.4-2.59 is installed OR webkit2gtk3-2.28.4-2.59 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libldap-2_4-2-2.4.41-18.71 is installed OR libldap-2_4-2-32bit-2.4.41-18.71 is installed OR openldap2-2.4.41-18.71 is installed OR openldap2-back-meta-2.4.41-18.71 is installed OR openldap2-client-2.4.41-18.71 is installed OR openldap2-doc-2.4.41-18.71 is installed OR openldap2-ppolicy-check-password-1.2-18.71 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND slf4j-1.7.12-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.8 is installed OR rubygem-rails-html-sanitizer-1.0.3-8.8 is installed

BACK