Oval Definition:oval:org.opensuse.security:def:74967
Revision Date:2020-12-01Version:1
Title:Security update for openldap2 (Important)
Description:

This update for openldap2 fixes the following issues:

- CVE-2020-8023: Fixed a potential local privilege escalation from ldap to root when OPENLDAP_CONFIG_BACKEND='ldap' was used (bsc#1172698). - Changed DB_CONFIG to root:ldap permissions (bsc#1172704).

This update was imported from the SUSE:SLE-15:Update update project.
Family:unixClass:patch
Status:Reference(s):1172686
1172698
1172704
1173937
1176589
1176605
CVE-2020-15095
CVE-2020-8023
CVE-2020-8201
CVE-2020-8252
openSUSE-SU-2020:0956-1
openSUSE-SU-2020:1616-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libldap-2_4-2-2.4.46-lp151.10.12 is installed
  • OR libldap-2_4-2-32bit-2.4.46-lp151.10.12 is installed
  • OR libldap-data-2.4.46-lp151.10.12 is installed
  • OR openldap2-2.4.46-lp151.10.12 is installed
  • OR openldap2-back-meta-2.4.46-lp151.10.12 is installed
  • OR openldap2-back-perl-2.4.46-lp151.10.12 is installed
  • OR openldap2-back-sock-2.4.46-lp151.10.12 is installed
  • OR openldap2-back-sql-2.4.46-lp151.10.12 is installed
  • OR openldap2-client-2.4.46-lp151.10.12 is installed
  • OR openldap2-contrib-2.4.46-lp151.10.12 is installed
  • OR openldap2-devel-2.4.46-lp151.10.12 is installed
  • OR openldap2-devel-32bit-2.4.46-lp151.10.12 is installed
  • OR openldap2-devel-static-2.4.46-lp151.10.12 is installed
  • OR openldap2-doc-2.4.46-lp151.10.12 is installed
  • OR openldap2-ppolicy-check-password-1.2-lp151.10.12 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • nodejs12-12.18.4-lp152.3.6 is installed
  • OR nodejs12-devel-12.18.4-lp152.3.6 is installed
  • OR nodejs12-docs-12.18.4-lp152.3.6 is installed
  • OR npm12-12.18.4-lp152.3.6 is installed
    • BACK