Oval Definition:oval:org.opensuse.security:def:93486
Revision Date:2022-03-07Version:1
Title: (Important)
Description:

This update for cyrus-sasl fixes the following issues:

- CVE-2022-24407: Fixed SQL injection in sql_auxprop_store in plugins/sql.c (bsc#1196036).

The following non-security bugs were fixed:

- postfix: sasl authentication with password fails (bsc#1194265).
Family:unixClass:patch
Status:Reference(s):1091625
1156944
1194265
1196036
CVE-2011-2767
CVE-2022-24407
openSUSE-SU-2019:2558-1
Platform(s):Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
Product(s):
Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND Package Information
  • apache2-mod_perl-2.0.11-bp151.4.3.1 is installed
  • OR apache2-mod_perl-devel-2.0.11-bp151.4.3.1 is installed
    • Definition Synopsis
  • Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2 is installed
  • AND Package Information
  • cyrus-sasl-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-digestmd5-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-gssapi-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-plain-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-saslauthd-2.1.27-150300.4.6.1 is installed
  • OR libsasl2-3-2.1.27-150300.4.6.1 is installed
    • BACK