Oval Definition:oval:org.opensuse.security:def:94481
Revision Date:2022-03-07Version:1
Title: (Important)
Description:

This update for cyrus-sasl fixes the following issues:

- CVE-2022-24407: Fixed SQL injection in sql_auxprop_store in plugins/sql.c (bsc#1196036).

The following non-security bugs were fixed:

- postfix: sasl authentication with password fails (bsc#1194265).
Family:unixClass:patch
Status:Reference(s):1027519
1177204
1179148
1180690
1181254
1181989
1182576
1183072
1194265
1196036
CVE-2021-28687
CVE-2021-3308
CVE-2022-24407
SUSE-SU-2021:1028-1
Platform(s):Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • xen-libs-4.13.2_08-3.25.3 is installed
  • OR xen-tools-domU-4.13.2_08-3.25.3 is installed
    • Definition Synopsis
  • Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE is installed
  • AND Package Information
  • cyrus-sasl-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-digestmd5-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-gssapi-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-plain-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-saslauthd-2.1.27-150300.4.6.1 is installed
  • OR libsasl2-3-2.1.27-150300.4.6.1 is installed
    • BACK