Oval Definition:oval:org.opensuse.security:def:99495
Revision Date:2022-03-07Version:1
Title: (Important)
Description:

This update for cyrus-sasl fixes the following issues:

- CVE-2022-24407: Fixed SQL injection in sql_auxprop_store in plugins/sql.c (bsc#1196036).

The following non-security bugs were fixed:

- postfix: sasl authentication with password fails (bsc#1194265).
Family:unixClass:patch
Status:Reference(s):1175132
1186622
1187443
1187444
1187445
1194265
1196036
CVE-2021-33195
CVE-2021-33196
CVE-2021-33197
CVE-2021-33198
CVE-2022-24407
SUSE-SU-2021:2214-1
Platform(s):Image SLES15-SP3-Manager-4-2-Proxy-BYOS-EC2-HVM
SUSE Linux Enterprise Server 15 SP1-LTSS
Product(s):
Definition Synopsis
  • Image SLES15-SP3-Manager-4-2-Proxy-BYOS-EC2-HVM is installed
  • AND Package Information
  • cyrus-sasl-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-digestmd5-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-gssapi-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-plain-2.1.27-150300.4.6.1 is installed
  • OR cyrus-sasl-saslauthd-2.1.27-150300.4.6.1 is installed
  • OR libsasl2-3-2.1.27-150300.4.6.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15 SP1-LTSS is installed
  • AND Package Information
  • go1.15-1.15.13-1.33.1 is installed
  • OR go1.15-doc-1.15.13-1.33.1 is installed
  • OR go1.15-race-1.15.13-1.33.1 is installed
    • BACK