Oval Definition:oval:org.opensuse.security:def:93326
Revision Date:2022-03-07Version:1
Title: (Important)
Description:

This update for cyrus-sasl fixes the following issues:

- CVE-2022-24407: Fixed SQL injection in sql_auxprop_store in plugins/sql.c (bsc#1196036).

The following non-security bugs were fixed:

- postfix: sasl authentication with password fails (bsc#1194265).
Family:unixClass:patch
Status:Reference(s):1182331
1182333
1194265
1196036
CVE-2021-23840
CVE-2021-23841
CVE-2022-24407
SUSE-SU-2021:0753-1
Platform(s):Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure
SUSE Manager Server 4.0
Product(s):
Definition Synopsis
  • SUSE Manager Server 4.0 is installed
  • AND Package Information
  • libopenssl-1_1-devel-1.1.0i-14.15.1 is installed
  • OR libopenssl-1_1-devel-32bit-1.1.0i-14.15.1 is installed
  • OR libopenssl1_1-1.1.0i-14.15.1 is installed
  • OR libopenssl1_1-32bit-1.1.0i-14.15.1 is installed
  • OR libopenssl1_1-hmac-1.1.0i-14.15.1 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.0i-14.15.1 is installed
  • OR openssl-1_1-1.1.0i-14.15.1 is installed
    • Definition Synopsis
  • Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure is installed
  • AND Package Information
  • cyrus-sasl-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-digestmd5-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-gssapi-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-plain-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-saslauthd-2.1.27-150300.4.6.1 is installed
  • OR libsasl2-3-2.1.27-150300.4.6.1 is installed
    • BACK