Oval Definition:oval:org.opensuse.security:def:64987
Revision Date:2020-12-01Version:1
Title:Security update for openldap2 (Important)
Description:

This update for openldap2 fixes the following issues:

- CVE-2020-8023: Fixed a potential local privilege escalation from ldap to root when OPENLDAP_CONFIG_BACKEND='ldap' was used (bsc#1172698). - Changed DB_CONFIG to root:ldap permissions (bsc#1172704).
Family:unixClass:patch
Status:Reference(s):1170446
1172698
1172704
1173592
1173594
1175686
1179005
CVE-2020-15663
CVE-2020-15664
CVE-2020-15669
CVE-2020-28924
CVE-2020-8023
CVE-2020-8695
CVE-2020-8696
CVE-2020-8698
openSUSE-SU-2020:1392-1
SUSE-SU-2020:1856-1
SUSE-SU-2020:3372-1
Platform(s):openSUSE Leap 15.2
SUSE Linux Enterprise Module for Basesystem 15 SP1
Product(s):
Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • MozillaThunderbird-68.12.0-lp152.2.10 is installed
  • OR MozillaThunderbird-translations-common-68.12.0-lp152.2.10 is installed
  • OR MozillaThunderbird-translations-other-68.12.0-lp152.2.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • libldap-2_4-2-2.4.46-9.31 is installed
  • OR libldap-2_4-2-32bit-2.4.46-9.31 is installed
  • OR libldap-data-2.4.46-9.31 is installed
  • OR openldap2-2.4.46-9.31 is installed
  • OR openldap2-client-2.4.46-9.31 is installed
  • OR openldap2-devel-2.4.46-9.31 is installed
  • OR openldap2-devel-static-2.4.46-9.31 is installed
  • OR openldap2-ppolicy-check-password-1.2-9.31 is installed
    • BACK