Oval Definition:oval:org.opensuse.security:def:78166
Revision Date:2015-05-18Version:1
Title:Security update for openldap2 (Moderate)
Description:

openldap2 was updated to fix two security issues and one non-security bug.

The following vulnerabilities were fixed:

A remote attacker could cause a denial of service through a NULL pointer dereference and crash via an empty attribute list in a deref control in a search request. (bnc#916897 CVE-2015-1545) * A remote attacker could cause a denial of service (crash) via a crafted search query with a matched values control. (bnc#916914 CVE-2015-1546)

The following non-security issue was fixed:

Prevent connection-0 (internal connection) from showing up in the monitor backend (bnc#905959)
Family:unixClass:patch
Status:Reference(s):905959
916897
916914
CVE-2015-1545
CVE-2015-1546
SUSE-SU-2015:1077-1
Platform(s):SUSE Linux Enterprise Desktop 12
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • libldap-2_4-2-2.4.39-16.1 is installed
  • OR libldap-2_4-2-32bit-2.4.39-16.1 is installed
  • OR openldap2-client-2.4.39-16.1 is installed
    • BACK