Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2015-1545 (GCVE-0-2015-1545)
Vulnerability from cvelistv5 – Published: 2015-02-12 16:00 – Updated: 2024-08-06 04:47
VLAI?
EPSS
Summary
The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T04:47:16.804Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "72519",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/72519"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commit%3Bh=c32e74763f77675b9e144126e375977ed6dc562c"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.apple.com/HT204659"
},
{
"name": "openldap-cve20151545-dos(100937)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100937"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"name": "DSA-3209",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2015/dsa-3209"
},
{
"name": "APPLE-SA-2015-04-08-2",
"tags": [
"vendor-advisory",
"x_refsource_APPLE",
"x_transferred"
],
"url": "http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html"
},
{
"name": "openSUSE-SU-2015:1325",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00069.html"
},
{
"name": "1032399",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1032399"
},
{
"name": "MDVSA-2015:073",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:073"
},
{
"name": "MDVSA-2015:074",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:074"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.openldap.org/its/?findid=8027"
},
{
"name": "62787",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/62787"
},
{
"name": "[oss-security] 20150207 Re: CVE request: two OpenLDAP DoS issues",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2015/02/07/3"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.apple.com/kb/HT210788"
},
{
"name": "20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "https://seclists.org/bugtraq/2019/Dec/23"
},
{
"name": "20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://seclists.org/fulldisclosure/2019/Dec/26"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2015-01-19T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-12-13T20:06:07",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "72519",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/72519"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commit%3Bh=c32e74763f77675b9e144126e375977ed6dc562c"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.apple.com/HT204659"
},
{
"name": "openldap-cve20151545-dos(100937)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100937"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"name": "DSA-3209",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2015/dsa-3209"
},
{
"name": "APPLE-SA-2015-04-08-2",
"tags": [
"vendor-advisory",
"x_refsource_APPLE"
],
"url": "http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html"
},
{
"name": "openSUSE-SU-2015:1325",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00069.html"
},
{
"name": "1032399",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1032399"
},
{
"name": "MDVSA-2015:073",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:073"
},
{
"name": "MDVSA-2015:074",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:074"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.openldap.org/its/?findid=8027"
},
{
"name": "62787",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/62787"
},
{
"name": "[oss-security] 20150207 Re: CVE request: two OpenLDAP DoS issues",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2015/02/07/3"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.apple.com/kb/HT210788"
},
{
"name": "20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "https://seclists.org/bugtraq/2019/Dec/23"
},
{
"name": "20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://seclists.org/fulldisclosure/2019/Dec/26"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-1545",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "72519",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/72519"
},
{
"name": "http://www.openldap.org/devel/gitweb.cgi?p=openldap.git;a=commit;h=c32e74763f77675b9e144126e375977ed6dc562c",
"refsource": "CONFIRM",
"url": "http://www.openldap.org/devel/gitweb.cgi?p=openldap.git;a=commit;h=c32e74763f77675b9e144126e375977ed6dc562c"
},
{
"name": "https://support.apple.com/HT204659",
"refsource": "CONFIRM",
"url": "https://support.apple.com/HT204659"
},
{
"name": "openldap-cve20151545-dos(100937)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100937"
},
{
"name": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988",
"refsource": "CONFIRM",
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"name": "DSA-3209",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2015/dsa-3209"
},
{
"name": "APPLE-SA-2015-04-08-2",
"refsource": "APPLE",
"url": "http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html"
},
{
"name": "openSUSE-SU-2015:1325",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00069.html"
},
{
"name": "1032399",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1032399"
},
{
"name": "MDVSA-2015:073",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:073"
},
{
"name": "MDVSA-2015:074",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:074"
},
{
"name": "http://www.openldap.org/its/?findid=8027",
"refsource": "CONFIRM",
"url": "http://www.openldap.org/its/?findid=8027"
},
{
"name": "62787",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/62787"
},
{
"name": "[oss-security] 20150207 Re: CVE request: two OpenLDAP DoS issues",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2015/02/07/3"
},
{
"name": "https://support.apple.com/kb/HT210788",
"refsource": "CONFIRM",
"url": "https://support.apple.com/kb/HT210788"
},
{
"name": "20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
"refsource": "BUGTRAQ",
"url": "https://seclists.org/bugtraq/2019/Dec/23"
},
{
"name": "20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
"refsource": "FULLDISC",
"url": "http://seclists.org/fulldisclosure/2019/Dec/26"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2015-1545",
"datePublished": "2015-02-12T16:00:00",
"dateReserved": "2015-02-07T00:00:00",
"dateUpdated": "2024-08-06T04:47:16.804Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E99FB859-D023-4B2B-A709-05E83A46E2A1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8D2EEBC7-1FAF-43E2-A124-C387C02D9E2B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"95D242E4-D5EB-4785-A6EF-60B1E8E2B0EC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F6FEDD9C-FDF7-456A-B06C-0A4A4443991D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9245CDE2-B90A-4D47-BA20-A7869FF0A645\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.18:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FB993E4D-E573-4495-97DE-465DDB2AA2DF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.19:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D0F106A3-63D5-4D07-9440-6628DBA78BE5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.20:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36CC03BC-DF34-43CD-90B0-27D23A1DD06A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.21:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"16C90FEE-527E-47F5-8840-517A55163D8E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.22:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0FAEA812-BB47-47A3-A975-B3B8D30DBA36\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.23:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5DE5D180-3972-40A0-ADAF-A4F3364D1381\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.24:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AD76F376-00D8-4917-BF68-6EECC316C331\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.25:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F7063C11-3BF5-4037-ADC3-0C7E9AF830B4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.26:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CAE258EA-1B57-4189-AD5A-7E2ACF223167\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.27:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C492F5F5-A6FD-4BED-890A-79254138CC0A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.28:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A6F7FDE8-2E54-4162-AA5F-D81253AAC8FA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.29:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"693E3145-FDDB-4780-886B-6D7FC7B2C5B3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.30:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1BF32056-CC6A-4B2B-8FAA-F573445B9B99\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.31:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"93B99338-4A1A-4483-8308-49BCCB325C30\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.32:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FE652CE3-E16B-4062-8253-F3FB52A651EA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.33:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2A30ED6D-1DB8-4563-B131-1532F97F9694\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.34:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7764366D-29BB-4D75-A33C-7C17DA7496DE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.35:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0A38D99B-370E-430A-A657-CD9FF72D0863\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.36:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AB3D3034-D938-402D-A02F-3F4005C438AA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.37:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7D979A0-3214-4DC6-A838-0AD2444CA5FD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.38:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"25B3EF5D-7889-4206-838C-E932AFCBE15D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.39:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6B20FA14-9F5B-425D-ACEF-A2348252C39A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openldap:openldap:2.4.40:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"43B01F94-261C-4718-A82D-28DAE9B67936\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request.\"}, {\"lang\": \"es\", \"value\": \"La funci\\u00f3n deref_parseCtrl en servers/slapd/overlays/deref.c en OpenLDAP 2.4.13 hasta 2.4.40 permite a atacantes remotos causar una denegaci\\u00f3n de servicio (referencia a puntero nulo y ca\\u00edda) a trav\\u00e9s de una lista de atributos vac\\u00eda en un control de referencia en una solicitud de b\\u00fasqueda.\"}]",
"evaluatorComment": "\u003ca href=\"http://cwe.mitre.org/data/definitions/476.html\"\u003eCWE-476: NULL Pointer Dereference\u003c/a\u003e",
"id": "CVE-2015-1545",
"lastModified": "2024-11-21T02:25:37.720",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:P\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2015-02-12T16:59:06.143",
"references": "[{\"url\": \"http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.opensuse.org/opensuse-updates/2015-07/msg00069.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://seclists.org/fulldisclosure/2019/Dec/26\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/62787\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.debian.org/security/2015/dsa-3209\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2015:073\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2015:074\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commit%3Bh=c32e74763f77675b9e144126e375977ed6dc562c\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.openldap.org/its/?findid=8027\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\", \"Vendor Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2015/02/07/3\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/72519\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securitytracker.com/id/1032399\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/100937\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://seclists.org/bugtraq/2019/Dec/23\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://support.apple.com/HT204659\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://support.apple.com/kb/HT210788\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.opensuse.org/opensuse-updates/2015-07/msg00069.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://seclists.org/fulldisclosure/2019/Dec/26\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/62787\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.debian.org/security/2015/dsa-3209\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2015:073\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2015:074\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commit%3Bh=c32e74763f77675b9e144126e375977ed6dc562c\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.openldap.org/its/?findid=8027\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Vendor Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2015/02/07/3\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/72519\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securitytracker.com/id/1032399\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/100937\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://seclists.org/bugtraq/2019/Dec/23\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://support.apple.com/HT204659\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://support.apple.com/kb/HT210788\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "cve@mitre.org",
"vendorComments": "[{\"organization\": \"openldap.org\", \"comment\": \"Note that the deref overlay is not enabled by default, so this vulnerability only affects sites that have explicitly configured their servers to load and enable the overlay. Since this overlay has never been documented, there are no sites outside of the OpenLDAP developer community with a legitimate reason to enable this module.\", \"lastModified\": \"2015-02-25T11:33:12.727\"}]",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2015-1545\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2015-02-12T16:59:06.143\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n deref_parseCtrl en servers/slapd/overlays/deref.c en OpenLDAP 2.4.13 hasta 2.4.40 permite a atacantes remotos causar una denegaci\u00f3n de servicio (referencia a puntero nulo y ca\u00edda) a trav\u00e9s de una lista de atributos vac\u00eda en un control de referencia en una solicitud de b\u00fasqueda.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E99FB859-D023-4B2B-A709-05E83A46E2A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8D2EEBC7-1FAF-43E2-A124-C387C02D9E2B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"95D242E4-D5EB-4785-A6EF-60B1E8E2B0EC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6FEDD9C-FDF7-456A-B06C-0A4A4443991D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9245CDE2-B90A-4D47-BA20-A7869FF0A645\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB993E4D-E573-4495-97DE-465DDB2AA2DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D0F106A3-63D5-4D07-9440-6628DBA78BE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36CC03BC-DF34-43CD-90B0-27D23A1DD06A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"16C90FEE-527E-47F5-8840-517A55163D8E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0FAEA812-BB47-47A3-A975-B3B8D30DBA36\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DE5D180-3972-40A0-ADAF-A4F3364D1381\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.24:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD76F376-00D8-4917-BF68-6EECC316C331\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.25:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7063C11-3BF5-4037-ADC3-0C7E9AF830B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CAE258EA-1B57-4189-AD5A-7E2ACF223167\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C492F5F5-A6FD-4BED-890A-79254138CC0A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6F7FDE8-2E54-4162-AA5F-D81253AAC8FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"693E3145-FDDB-4780-886B-6D7FC7B2C5B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1BF32056-CC6A-4B2B-8FAA-F573445B9B99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"93B99338-4A1A-4483-8308-49BCCB325C30\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE652CE3-E16B-4062-8253-F3FB52A651EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A30ED6D-1DB8-4563-B131-1532F97F9694\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7764366D-29BB-4D75-A33C-7C17DA7496DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A38D99B-370E-430A-A657-CD9FF72D0863\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.36:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB3D3034-D938-402D-A02F-3F4005C438AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7D979A0-3214-4DC6-A838-0AD2444CA5FD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.38:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"25B3EF5D-7889-4206-838C-E932AFCBE15D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.39:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B20FA14-9F5B-425D-ACEF-A2348252C39A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openldap:openldap:2.4.40:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"43B01F94-261C-4718-A82D-28DAE9B67936\"}]}]}],\"references\":[{\"url\":\"http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2015-07/msg00069.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://seclists.org/fulldisclosure/2019/Dec/26\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/62787\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2015/dsa-3209\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:073\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:074\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commit%3Bh=c32e74763f77675b9e144126e375977ed6dc562c\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.openldap.org/its/?findid=8027\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Vendor Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2015/02/07/3\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/72519\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securitytracker.com/id/1032399\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/100937\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://seclists.org/bugtraq/2019/Dec/23\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://support.apple.com/HT204659\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://support.apple.com/kb/HT210788\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2015-07/msg00069.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/fulldisclosure/2019/Dec/26\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/62787\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2015/dsa-3209\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:073\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:074\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commit%3Bh=c32e74763f77675b9e144126e375977ed6dc562c\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.openldap.org/its/?findid=8027\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Vendor Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2015/02/07/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/72519\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id/1032399\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/100937\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://seclists.org/bugtraq/2019/Dec/23\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.apple.com/HT204659\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.apple.com/kb/HT210788\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"evaluatorComment\":\"\u003ca href=\\\"http://cwe.mitre.org/data/definitions/476.html\\\"\u003eCWE-476: NULL Pointer Dereference\u003c/a\u003e\",\"vendorComments\":[{\"organization\":\"openldap.org\",\"comment\":\"Note that the deref overlay is not enabled by default, so this vulnerability only affects sites that have explicitly configured their servers to load and enable the overlay. Since this overlay has never been documented, there are no sites outside of the OpenLDAP developer community with a legitimate reason to enable this module.\",\"lastModified\":\"2015-02-25T11:33:12.727\"}]}}"
}
}
SUSE-SU-2015:0887-1
Vulnerability from csaf_suse - Published: 2015-04-13 12:35 - Updated: 2015-04-13 12:35Summary
Security update for openldap2
Notes
Title of the patch
Security update for openldap2
Description of the patch
openldap2 was updated to fix three security issues and one non-security
bug.
The following vulnerabilities were fixed:
* A remote attacker could cause a denial of service (slapd crash) by
unbinding immediately after a search request. (bnc#846389,
CVE-2013-4449)
* A remote attacker could cause a denial of service through a NULL
pointer dereference and crash via an empty attribute list in a deref
control in a search request. (bnc#916897, CVE-2015-1545)
* A remote attacker could cause a denial of service (crash) via a
crafted search query with a matched values control. (bnc#916914,
CVE-2015-1546)
The following non-security bug was fixed:
* Prevent connection-0 (internal connection) from showing up in the
monitor back-end. (bnc#905959)
Security Issues:
* CVE-2015-1546
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1546>
* CVE-2015-1545
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1545>
* CVE-2013-4449
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4449>
Patchnames
sdksp3-openldap2-20150423,secsp3-openldap2-20150423,sledsp3-openldap2-20150423,slessp3-openldap2-20150423
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for openldap2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nopenldap2 was updated to fix three security issues and one non-security \nbug.\n\nThe following vulnerabilities were fixed:\n\n * A remote attacker could cause a denial of service (slapd crash) by\n unbinding immediately after a search request. (bnc#846389,\n CVE-2013-4449)\n * A remote attacker could cause a denial of service through a NULL\n pointer dereference and crash via an empty attribute list in a deref\n control in a search request. (bnc#916897, CVE-2015-1545)\n * A remote attacker could cause a denial of service (crash) via a\n crafted search query with a matched values control. (bnc#916914,\n CVE-2015-1546)\n\nThe following non-security bug was fixed:\n\n * Prevent connection-0 (internal connection) from showing up in the\n monitor back-end. (bnc#905959)\n\nSecurity Issues:\n\n * CVE-2015-1546\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1546\u003e\n * CVE-2015-1545\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1545\u003e\n * CVE-2013-4449\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4449\u003e\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sdksp3-openldap2-20150423,secsp3-openldap2-20150423,sledsp3-openldap2-20150423,slessp3-openldap2-20150423",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0887-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:0887-1",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150887-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:0887-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-May/001389.html"
},
{
"category": "self",
"summary": "SUSE Bug 846389",
"url": "https://bugzilla.suse.com/846389"
},
{
"category": "self",
"summary": "SUSE Bug 905959",
"url": "https://bugzilla.suse.com/905959"
},
{
"category": "self",
"summary": "SUSE Bug 916897",
"url": "https://bugzilla.suse.com/916897"
},
{
"category": "self",
"summary": "SUSE Bug 916914",
"url": "https://bugzilla.suse.com/916914"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-4449 page",
"url": "https://www.suse.com/security/cve/CVE-2013-4449/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1545 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1545/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1546 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1546/"
}
],
"title": "Security update for openldap2",
"tracking": {
"current_release_date": "2015-04-13T12:35:26Z",
"generator": {
"date": "2015-04-13T12:35:26Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:0887-1",
"initial_release_date": "2015-04-13T12:35:26Z",
"revision_history": [
{
"date": "2015-04-13T12:35:26Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "openldap2-2.4.26-0.30.1.i586",
"product": {
"name": "openldap2-2.4.26-0.30.1.i586",
"product_id": "openldap2-2.4.26-0.30.1.i586"
}
},
{
"category": "product_version",
"name": "openldap2-back-perl-2.4.26-0.30.1.i586",
"product": {
"name": "openldap2-back-perl-2.4.26-0.30.1.i586",
"product_id": "openldap2-back-perl-2.4.26-0.30.1.i586"
}
},
{
"category": "product_version",
"name": "openldap2-devel-2.4.26-0.30.1.i586",
"product": {
"name": "openldap2-devel-2.4.26-0.30.1.i586",
"product_id": "openldap2-devel-2.4.26-0.30.1.i586"
}
},
{
"category": "product_version",
"name": "libldap-openssl1-2_4-2-2.4.26-0.30.2.i586",
"product": {
"name": "libldap-openssl1-2_4-2-2.4.26-0.30.2.i586",
"product_id": "libldap-openssl1-2_4-2-2.4.26-0.30.2.i586"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-2.4.26-0.30.1.i586",
"product": {
"name": "libldap-2_4-2-2.4.26-0.30.1.i586",
"product_id": "libldap-2_4-2-2.4.26-0.30.1.i586"
}
},
{
"category": "product_version",
"name": "openldap2-client-2.4.26-0.30.1.i586",
"product": {
"name": "openldap2-client-2.4.26-0.30.1.i586",
"product_id": "openldap2-client-2.4.26-0.30.1.i586"
}
},
{
"category": "product_version",
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"product": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"product_id": "compat-libldap-2_3-0-2.3.37-2.30.1.i586"
}
},
{
"category": "product_version",
"name": "openldap2-back-meta-2.4.26-0.30.1.i586",
"product": {
"name": "openldap2-back-meta-2.4.26-0.30.1.i586",
"product_id": "openldap2-back-meta-2.4.26-0.30.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "openldap2-back-perl-2.4.26-0.30.1.ia64",
"product": {
"name": "openldap2-back-perl-2.4.26-0.30.1.ia64",
"product_id": "openldap2-back-perl-2.4.26-0.30.1.ia64"
}
},
{
"category": "product_version",
"name": "openldap2-devel-2.4.26-0.30.1.ia64",
"product": {
"name": "openldap2-devel-2.4.26-0.30.1.ia64",
"product_id": "openldap2-devel-2.4.26-0.30.1.ia64"
}
},
{
"category": "product_version",
"name": "libldap-openssl1-2_4-2-2.4.26-0.30.2.ia64",
"product": {
"name": "libldap-openssl1-2_4-2-2.4.26-0.30.2.ia64",
"product_id": "libldap-openssl1-2_4-2-2.4.26-0.30.2.ia64"
}
},
{
"category": "product_version",
"name": "libldap-openssl1-2_4-2-x86-2.4.26-0.30.2.ia64",
"product": {
"name": "libldap-openssl1-2_4-2-x86-2.4.26-0.30.2.ia64",
"product_id": "libldap-openssl1-2_4-2-x86-2.4.26-0.30.2.ia64"
}
},
{
"category": "product_version",
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"product": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"product_id": "compat-libldap-2_3-0-2.3.37-2.30.1.ia64"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-2.4.26-0.30.1.ia64",
"product": {
"name": "libldap-2_4-2-2.4.26-0.30.1.ia64",
"product_id": "libldap-2_4-2-2.4.26-0.30.1.ia64"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"product": {
"name": "libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"product_id": "libldap-2_4-2-x86-2.4.26-0.30.1.ia64"
}
},
{
"category": "product_version",
"name": "openldap2-2.4.26-0.30.1.ia64",
"product": {
"name": "openldap2-2.4.26-0.30.1.ia64",
"product_id": "openldap2-2.4.26-0.30.1.ia64"
}
},
{
"category": "product_version",
"name": "openldap2-back-meta-2.4.26-0.30.1.ia64",
"product": {
"name": "openldap2-back-meta-2.4.26-0.30.1.ia64",
"product_id": "openldap2-back-meta-2.4.26-0.30.1.ia64"
}
},
{
"category": "product_version",
"name": "openldap2-client-2.4.26-0.30.1.ia64",
"product": {
"name": "openldap2-client-2.4.26-0.30.1.ia64",
"product_id": "openldap2-client-2.4.26-0.30.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "openldap2-back-perl-2.4.26-0.30.1.ppc64",
"product": {
"name": "openldap2-back-perl-2.4.26-0.30.1.ppc64",
"product_id": "openldap2-back-perl-2.4.26-0.30.1.ppc64"
}
},
{
"category": "product_version",
"name": "openldap2-devel-2.4.26-0.30.1.ppc64",
"product": {
"name": "openldap2-devel-2.4.26-0.30.1.ppc64",
"product_id": "openldap2-devel-2.4.26-0.30.1.ppc64"
}
},
{
"category": "product_version",
"name": "openldap2-devel-32bit-2.4.26-0.30.1.ppc64",
"product": {
"name": "openldap2-devel-32bit-2.4.26-0.30.1.ppc64",
"product_id": "openldap2-devel-32bit-2.4.26-0.30.1.ppc64"
}
},
{
"category": "product_version",
"name": "libldap-openssl1-2_4-2-2.4.26-0.30.2.ppc64",
"product": {
"name": "libldap-openssl1-2_4-2-2.4.26-0.30.2.ppc64",
"product_id": "libldap-openssl1-2_4-2-2.4.26-0.30.2.ppc64"
}
},
{
"category": "product_version",
"name": "libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.ppc64",
"product": {
"name": "libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.ppc64",
"product_id": "libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.ppc64"
}
},
{
"category": "product_version",
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"product": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"product_id": "compat-libldap-2_3-0-2.3.37-2.30.1.ppc64"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-2.4.26-0.30.1.ppc64",
"product": {
"name": "libldap-2_4-2-2.4.26-0.30.1.ppc64",
"product_id": "libldap-2_4-2-2.4.26-0.30.1.ppc64"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"product": {
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"product_id": "libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64"
}
},
{
"category": "product_version",
"name": "openldap2-2.4.26-0.30.1.ppc64",
"product": {
"name": "openldap2-2.4.26-0.30.1.ppc64",
"product_id": "openldap2-2.4.26-0.30.1.ppc64"
}
},
{
"category": "product_version",
"name": "openldap2-back-meta-2.4.26-0.30.1.ppc64",
"product": {
"name": "openldap2-back-meta-2.4.26-0.30.1.ppc64",
"product_id": "openldap2-back-meta-2.4.26-0.30.1.ppc64"
}
},
{
"category": "product_version",
"name": "openldap2-client-2.4.26-0.30.1.ppc64",
"product": {
"name": "openldap2-client-2.4.26-0.30.1.ppc64",
"product_id": "openldap2-client-2.4.26-0.30.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "openldap2-back-perl-2.4.26-0.30.1.s390x",
"product": {
"name": "openldap2-back-perl-2.4.26-0.30.1.s390x",
"product_id": "openldap2-back-perl-2.4.26-0.30.1.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-devel-2.4.26-0.30.1.s390x",
"product": {
"name": "openldap2-devel-2.4.26-0.30.1.s390x",
"product_id": "openldap2-devel-2.4.26-0.30.1.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-devel-32bit-2.4.26-0.30.1.s390x",
"product": {
"name": "openldap2-devel-32bit-2.4.26-0.30.1.s390x",
"product_id": "openldap2-devel-32bit-2.4.26-0.30.1.s390x"
}
},
{
"category": "product_version",
"name": "libldap-openssl1-2_4-2-2.4.26-0.30.2.s390x",
"product": {
"name": "libldap-openssl1-2_4-2-2.4.26-0.30.2.s390x",
"product_id": "libldap-openssl1-2_4-2-2.4.26-0.30.2.s390x"
}
},
{
"category": "product_version",
"name": "libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.s390x",
"product": {
"name": "libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.s390x",
"product_id": "libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.s390x"
}
},
{
"category": "product_version",
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"product": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"product_id": "compat-libldap-2_3-0-2.3.37-2.30.1.s390x"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-2.4.26-0.30.1.s390x",
"product": {
"name": "libldap-2_4-2-2.4.26-0.30.1.s390x",
"product_id": "libldap-2_4-2-2.4.26-0.30.1.s390x"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"product": {
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"product_id": "libldap-2_4-2-32bit-2.4.26-0.30.1.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-2.4.26-0.30.1.s390x",
"product": {
"name": "openldap2-2.4.26-0.30.1.s390x",
"product_id": "openldap2-2.4.26-0.30.1.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-back-meta-2.4.26-0.30.1.s390x",
"product": {
"name": "openldap2-back-meta-2.4.26-0.30.1.s390x",
"product_id": "openldap2-back-meta-2.4.26-0.30.1.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-client-2.4.26-0.30.1.s390x",
"product": {
"name": "openldap2-client-2.4.26-0.30.1.s390x",
"product_id": "openldap2-client-2.4.26-0.30.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openldap2-2.4.26-0.30.1.x86_64",
"product": {
"name": "openldap2-2.4.26-0.30.1.x86_64",
"product_id": "openldap2-2.4.26-0.30.1.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-back-perl-2.4.26-0.30.1.x86_64",
"product": {
"name": "openldap2-back-perl-2.4.26-0.30.1.x86_64",
"product_id": "openldap2-back-perl-2.4.26-0.30.1.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-devel-2.4.26-0.30.1.x86_64",
"product": {
"name": "openldap2-devel-2.4.26-0.30.1.x86_64",
"product_id": "openldap2-devel-2.4.26-0.30.1.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-devel-32bit-2.4.26-0.30.1.x86_64",
"product": {
"name": "openldap2-devel-32bit-2.4.26-0.30.1.x86_64",
"product_id": "openldap2-devel-32bit-2.4.26-0.30.1.x86_64"
}
},
{
"category": "product_version",
"name": "libldap-openssl1-2_4-2-2.4.26-0.30.2.x86_64",
"product": {
"name": "libldap-openssl1-2_4-2-2.4.26-0.30.2.x86_64",
"product_id": "libldap-openssl1-2_4-2-2.4.26-0.30.2.x86_64"
}
},
{
"category": "product_version",
"name": "libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.x86_64",
"product": {
"name": "libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.x86_64",
"product_id": "libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.x86_64"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-2.4.26-0.30.1.x86_64",
"product": {
"name": "libldap-2_4-2-2.4.26-0.30.1.x86_64",
"product_id": "libldap-2_4-2-2.4.26-0.30.1.x86_64"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"product": {
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"product_id": "libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-client-2.4.26-0.30.1.x86_64",
"product": {
"name": "openldap2-client-2.4.26-0.30.1.x86_64",
"product_id": "openldap2-client-2.4.26-0.30.1.x86_64"
}
},
{
"category": "product_version",
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"product": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"product_id": "compat-libldap-2_3-0-2.3.37-2.30.1.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-back-meta-2.4.26-0.30.1.x86_64",
"product": {
"name": "openldap2-back-meta-2.4.26-0.30.1.x86_64",
"product_id": "openldap2-back-meta-2.4.26-0.30.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/a:suse:sle-sdk:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11-SECURITY",
"product": {
"name": "SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:11:security"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sled:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:11:sp3:teradata"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:11:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-2.4.26-0.30.1.i586"
},
"product_reference": "openldap2-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-2.4.26-0.30.1.x86_64"
},
"product_reference": "openldap2-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-perl-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.i586"
},
"product_reference": "openldap2-back-perl-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-perl-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.ia64"
},
"product_reference": "openldap2-back-perl-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-perl-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.ppc64"
},
"product_reference": "openldap2-back-perl-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-perl-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.s390x"
},
"product_reference": "openldap2-back-perl-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-perl-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.x86_64"
},
"product_reference": "openldap2-back-perl-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.i586"
},
"product_reference": "openldap2-devel-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.ia64"
},
"product_reference": "openldap2-devel-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.ppc64"
},
"product_reference": "openldap2-devel-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.s390x"
},
"product_reference": "openldap2-devel-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.x86_64"
},
"product_reference": "openldap2-devel-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-32bit-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.ppc64"
},
"product_reference": "openldap2-devel-32bit-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-32bit-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.s390x"
},
"product_reference": "openldap2-devel-32bit-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-32bit-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.x86_64"
},
"product_reference": "openldap2-devel-32bit-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-openssl1-2_4-2-2.4.26-0.30.2.i586 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.i586"
},
"product_reference": "libldap-openssl1-2_4-2-2.4.26-0.30.2.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-openssl1-2_4-2-2.4.26-0.30.2.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.ia64"
},
"product_reference": "libldap-openssl1-2_4-2-2.4.26-0.30.2.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-openssl1-2_4-2-2.4.26-0.30.2.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.ppc64"
},
"product_reference": "libldap-openssl1-2_4-2-2.4.26-0.30.2.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-openssl1-2_4-2-2.4.26-0.30.2.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.s390x"
},
"product_reference": "libldap-openssl1-2_4-2-2.4.26-0.30.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-openssl1-2_4-2-2.4.26-0.30.2.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.x86_64"
},
"product_reference": "libldap-openssl1-2_4-2-2.4.26-0.30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.ppc64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.ppc64"
},
"product_reference": "libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.s390x as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.s390x"
},
"product_reference": "libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.x86_64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.x86_64"
},
"product_reference": "libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-openssl1-2_4-2-x86-2.4.26-0.30.2.ia64 as component of SUSE Linux Enterprise Server 11-SECURITY",
"product_id": "SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-x86-2.4.26-0.30.2.ia64"
},
"product_reference": "libldap-openssl1-2_4-2-x86-2.4.26-0.30.2.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11-SECURITY"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64"
},
"product_reference": "libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:openldap2-client-2.4.26-0.30.1.i586"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.i586"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ia64"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.s390x"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ia64"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ppc64"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.s390x"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64"
},
"product_reference": "libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x"
},
"product_reference": "libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64"
},
"product_reference": "libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-x86-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-x86-2.4.26-0.30.1.ia64"
},
"product_reference": "libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.i586"
},
"product_reference": "openldap2-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.ia64"
},
"product_reference": "openldap2-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.ppc64"
},
"product_reference": "openldap2-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.s390x"
},
"product_reference": "openldap2-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.x86_64"
},
"product_reference": "openldap2-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.i586"
},
"product_reference": "openldap2-back-meta-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ia64"
},
"product_reference": "openldap2-back-meta-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ppc64"
},
"product_reference": "openldap2-back-meta-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.s390x"
},
"product_reference": "openldap2-back-meta-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.x86_64"
},
"product_reference": "openldap2-back-meta-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.i586"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.ia64"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.ppc64"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.s390x"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.i586"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.ia64"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.s390x"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.i586"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.ia64"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.ppc64"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.s390x"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.x86_64"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64"
},
"product_reference": "libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x"
},
"product_reference": "libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64"
},
"product_reference": "libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-x86-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-x86-2.4.26-0.30.1.ia64"
},
"product_reference": "libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.i586"
},
"product_reference": "openldap2-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.ia64"
},
"product_reference": "openldap2-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.ppc64"
},
"product_reference": "openldap2-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.s390x"
},
"product_reference": "openldap2-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.x86_64"
},
"product_reference": "openldap2-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.i586"
},
"product_reference": "openldap2-back-meta-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.ia64"
},
"product_reference": "openldap2-back-meta-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.ppc64"
},
"product_reference": "openldap2-back-meta-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.s390x"
},
"product_reference": "openldap2-back-meta-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.x86_64"
},
"product_reference": "openldap2-back-meta-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.i586"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.ia64"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.ppc64"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.s390x"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.x86_64"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.i586"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ia64"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.s390x"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-2.30.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ia64"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ppc64"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.s390x"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64"
},
"product_reference": "libldap-2_4-2-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64"
},
"product_reference": "libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x"
},
"product_reference": "libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64"
},
"product_reference": "libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-x86-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-x86-2.4.26-0.30.1.ia64"
},
"product_reference": "libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.i586"
},
"product_reference": "openldap2-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.ia64"
},
"product_reference": "openldap2-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.ppc64"
},
"product_reference": "openldap2-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.s390x"
},
"product_reference": "openldap2-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.x86_64"
},
"product_reference": "openldap2-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.i586"
},
"product_reference": "openldap2-back-meta-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ia64"
},
"product_reference": "openldap2-back-meta-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ppc64"
},
"product_reference": "openldap2-back-meta-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.s390x"
},
"product_reference": "openldap2-back-meta-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.x86_64"
},
"product_reference": "openldap2-back-meta-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.i586"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.ia64"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.ppc64"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.s390x"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.26-0.30.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64"
},
"product_reference": "openldap2-client-2.4.26-0.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2013-4449",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-4449"
}
],
"notes": [
{
"category": "general",
"text": "The rwm overlay in OpenLDAP 2.4.23, 2.4.36, and earlier does not properly count references, which allows remote attackers to cause a denial of service (slapd crash) by unbinding immediately after a search request, which triggers rwm_conn_destroy to free the session context while it is being used by rwm_op_search.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-x86-2.4.26-0.30.2.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-4449",
"url": "https://www.suse.com/security/cve/CVE-2013-4449"
},
{
"category": "external",
"summary": "SUSE Bug 846389 for CVE-2013-4449",
"url": "https://bugzilla.suse.com/846389"
},
{
"category": "external",
"summary": "SUSE Bug 916897 for CVE-2013-4449",
"url": "https://bugzilla.suse.com/916897"
},
{
"category": "external",
"summary": "SUSE Bug 916914 for CVE-2013-4449",
"url": "https://bugzilla.suse.com/916914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-x86-2.4.26-0.30.2.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-04-13T12:35:26Z",
"details": "moderate"
}
],
"title": "CVE-2013-4449"
},
{
"cve": "CVE-2015-1545",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1545"
}
],
"notes": [
{
"category": "general",
"text": "The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-x86-2.4.26-0.30.2.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1545",
"url": "https://www.suse.com/security/cve/CVE-2015-1545"
},
{
"category": "external",
"summary": "SUSE Bug 846389 for CVE-2015-1545",
"url": "https://bugzilla.suse.com/846389"
},
{
"category": "external",
"summary": "SUSE Bug 916897 for CVE-2015-1545",
"url": "https://bugzilla.suse.com/916897"
},
{
"category": "external",
"summary": "SUSE Bug 916914 for CVE-2015-1545",
"url": "https://bugzilla.suse.com/916914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-x86-2.4.26-0.30.2.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-04-13T12:35:26Z",
"details": "moderate"
}
],
"title": "CVE-2015-1545"
},
{
"cve": "CVE-2015-1546",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1546"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in the get_vrFilter function in servers/slapd/filter.c in OpenLDAP 2.4.40 allows remote attackers to cause a denial of service (crash) via a crafted search query with a matched values control.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-x86-2.4.26-0.30.2.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1546",
"url": "https://www.suse.com/security/cve/CVE-2015-1546"
},
{
"category": "external",
"summary": "SUSE Bug 916914 for CVE-2015-1546",
"url": "https://bugzilla.suse.com/916914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.i586",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.ia64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-2.4.26-0.30.2.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.ppc64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.s390x",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2.x86_64",
"SUSE Linux Enterprise Server 11-SECURITY:libldap-openssl1-2_4-2-x86-2.4.26-0.30.2.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:compat-libldap-2_3-0-2.3.37-2.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-32bit-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:libldap-2_4-2-x86-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-back-meta-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:openldap2-client-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-back-perl-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-2.4.26-0.30.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP3:openldap2-devel-32bit-2.4.26-0.30.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-04-13T12:35:26Z",
"details": "moderate"
}
],
"title": "CVE-2015-1546"
}
]
}
SUSE-SU-2015:1077-1
Vulnerability from csaf_suse - Published: 2015-05-18 08:42 - Updated: 2015-05-18 08:42Summary
Security update for openldap2
Notes
Title of the patch
Security update for openldap2
Description of the patch
openldap2 was updated to fix two security issues and one non-security bug.
The following vulnerabilities were fixed:
* A remote attacker could cause a denial of service through a NULL pointer dereference and crash via an empty attribute list in a deref control in a search request. (bnc#916897 CVE-2015-1545)
* A remote attacker could cause a denial of service (crash) via a crafted search query with a matched values control. (bnc#916914 CVE-2015-1546)
The following non-security issue was fixed:
* Prevent connection-0 (internal connection) from showing up in the monitor backend (bnc#905959)
Patchnames
SUSE-SLE-DESKTOP-12-2015-273,SUSE-SLE-Module-Legacy-12-2015-273,SUSE-SLE-SAP-12-2015-273,SUSE-SLE-SDK-12-2015-273,SUSE-SLE-SERVER-12-2015-273
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for openldap2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "openldap2 was updated to fix two security issues and one non-security bug.\n\nThe following vulnerabilities were fixed:\n\n* A remote attacker could cause a denial of service through a NULL pointer dereference and crash via an empty attribute list in a deref control in a search request. (bnc#916897 CVE-2015-1545)\n* A remote attacker could cause a denial of service (crash) via a crafted search query with a matched values control. (bnc#916914 CVE-2015-1546) \n\nThe following non-security issue was fixed:\n\n* Prevent connection-0 (internal connection) from showing up in the monitor backend (bnc#905959)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-DESKTOP-12-2015-273,SUSE-SLE-Module-Legacy-12-2015-273,SUSE-SLE-SAP-12-2015-273,SUSE-SLE-SDK-12-2015-273,SUSE-SLE-SERVER-12-2015-273",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_1077-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:1077-1",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20151077-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:1077-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-June/001443.html"
},
{
"category": "self",
"summary": "SUSE Bug 905959",
"url": "https://bugzilla.suse.com/905959"
},
{
"category": "self",
"summary": "SUSE Bug 916897",
"url": "https://bugzilla.suse.com/916897"
},
{
"category": "self",
"summary": "SUSE Bug 916914",
"url": "https://bugzilla.suse.com/916914"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1545 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1545/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1546 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1546/"
}
],
"title": "Security update for openldap2",
"tracking": {
"current_release_date": "2015-05-18T08:42:31Z",
"generator": {
"date": "2015-05-18T08:42:31Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:1077-1",
"initial_release_date": "2015-05-18T08:42:31Z",
"revision_history": [
{
"date": "2015-05-18T08:42:31Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "compat-libldap-2_3-0-2.3.37-16.1.ppc64le",
"product": {
"name": "compat-libldap-2_3-0-2.3.37-16.1.ppc64le",
"product_id": "compat-libldap-2_3-0-2.3.37-16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-back-perl-2.4.39-16.1.ppc64le",
"product": {
"name": "openldap2-back-perl-2.4.39-16.1.ppc64le",
"product_id": "openldap2-back-perl-2.4.39-16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-devel-2.4.39-16.1.ppc64le",
"product": {
"name": "openldap2-devel-2.4.39-16.1.ppc64le",
"product_id": "openldap2-devel-2.4.39-16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-devel-static-2.4.39-16.1.ppc64le",
"product": {
"name": "openldap2-devel-static-2.4.39-16.1.ppc64le",
"product_id": "openldap2-devel-static-2.4.39-16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-2.4.39-16.1.ppc64le",
"product": {
"name": "libldap-2_4-2-2.4.39-16.1.ppc64le",
"product_id": "libldap-2_4-2-2.4.39-16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-2.4.39-16.1.ppc64le",
"product": {
"name": "openldap2-2.4.39-16.1.ppc64le",
"product_id": "openldap2-2.4.39-16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-back-meta-2.4.39-16.1.ppc64le",
"product": {
"name": "openldap2-back-meta-2.4.39-16.1.ppc64le",
"product_id": "openldap2-back-meta-2.4.39-16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-client-2.4.39-16.1.ppc64le",
"product": {
"name": "openldap2-client-2.4.39-16.1.ppc64le",
"product_id": "openldap2-client-2.4.39-16.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "compat-libldap-2_3-0-2.3.37-16.1.s390x",
"product": {
"name": "compat-libldap-2_3-0-2.3.37-16.1.s390x",
"product_id": "compat-libldap-2_3-0-2.3.37-16.1.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-back-perl-2.4.39-16.1.s390x",
"product": {
"name": "openldap2-back-perl-2.4.39-16.1.s390x",
"product_id": "openldap2-back-perl-2.4.39-16.1.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-devel-2.4.39-16.1.s390x",
"product": {
"name": "openldap2-devel-2.4.39-16.1.s390x",
"product_id": "openldap2-devel-2.4.39-16.1.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-devel-static-2.4.39-16.1.s390x",
"product": {
"name": "openldap2-devel-static-2.4.39-16.1.s390x",
"product_id": "openldap2-devel-static-2.4.39-16.1.s390x"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-2.4.39-16.1.s390x",
"product": {
"name": "libldap-2_4-2-2.4.39-16.1.s390x",
"product_id": "libldap-2_4-2-2.4.39-16.1.s390x"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-32bit-2.4.39-16.1.s390x",
"product": {
"name": "libldap-2_4-2-32bit-2.4.39-16.1.s390x",
"product_id": "libldap-2_4-2-32bit-2.4.39-16.1.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-2.4.39-16.1.s390x",
"product": {
"name": "openldap2-2.4.39-16.1.s390x",
"product_id": "openldap2-2.4.39-16.1.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-back-meta-2.4.39-16.1.s390x",
"product": {
"name": "openldap2-back-meta-2.4.39-16.1.s390x",
"product_id": "openldap2-back-meta-2.4.39-16.1.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-client-2.4.39-16.1.s390x",
"product": {
"name": "openldap2-client-2.4.39-16.1.s390x",
"product_id": "openldap2-client-2.4.39-16.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libldap-2_4-2-2.4.39-16.1.x86_64",
"product": {
"name": "libldap-2_4-2-2.4.39-16.1.x86_64",
"product_id": "libldap-2_4-2-2.4.39-16.1.x86_64"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"product": {
"name": "libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"product_id": "libldap-2_4-2-32bit-2.4.39-16.1.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-client-2.4.39-16.1.x86_64",
"product": {
"name": "openldap2-client-2.4.39-16.1.x86_64",
"product_id": "openldap2-client-2.4.39-16.1.x86_64"
}
},
{
"category": "product_version",
"name": "compat-libldap-2_3-0-2.3.37-16.1.x86_64",
"product": {
"name": "compat-libldap-2_3-0-2.3.37-16.1.x86_64",
"product_id": "compat-libldap-2_3-0-2.3.37-16.1.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-back-perl-2.4.39-16.1.x86_64",
"product": {
"name": "openldap2-back-perl-2.4.39-16.1.x86_64",
"product_id": "openldap2-back-perl-2.4.39-16.1.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-devel-2.4.39-16.1.x86_64",
"product": {
"name": "openldap2-devel-2.4.39-16.1.x86_64",
"product_id": "openldap2-devel-2.4.39-16.1.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-devel-static-2.4.39-16.1.x86_64",
"product": {
"name": "openldap2-devel-static-2.4.39-16.1.x86_64",
"product_id": "openldap2-devel-static-2.4.39-16.1.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-2.4.39-16.1.x86_64",
"product": {
"name": "openldap2-2.4.39-16.1.x86_64",
"product_id": "openldap2-2.4.39-16.1.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-back-meta-2.4.39-16.1.x86_64",
"product": {
"name": "openldap2-back-meta-2.4.39-16.1.x86_64",
"product_id": "openldap2-back-meta-2.4.39-16.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12",
"product": {
"name": "SUSE Linux Enterprise Desktop 12",
"product_id": "SUSE Linux Enterprise Desktop 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Legacy 12",
"product": {
"name": "SUSE Linux Enterprise Module for Legacy 12",
"product_id": "SUSE Linux Enterprise Module for Legacy 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-legacy:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12",
"product": {
"name": "SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Desktop 12",
"product_id": "SUSE Linux Enterprise Desktop 12:libldap-2_4-2-2.4.39-16.1.x86_64"
},
"product_reference": "libldap-2_4-2-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Desktop 12",
"product_id": "SUSE Linux Enterprise Desktop 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64"
},
"product_reference": "libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Desktop 12",
"product_id": "SUSE Linux Enterprise Desktop 12:openldap2-client-2.4.39-16.1.x86_64"
},
"product_reference": "openldap2-client-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-16.1.ppc64le as component of SUSE Linux Enterprise Module for Legacy 12",
"product_id": "SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-16.1.ppc64le"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-16.1.s390x as component of SUSE Linux Enterprise Module for Legacy 12",
"product_id": "SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-16.1.s390x"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-16.1.x86_64 as component of SUSE Linux Enterprise Module for Legacy 12",
"product_id": "SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-16.1.x86_64"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:compat-libldap-2_3-0-2.3.37-16.1.x86_64"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.39-16.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.ppc64le"
},
"product_reference": "libldap-2_4-2-2.4.39-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.s390x"
},
"product_reference": "libldap-2_4-2-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.x86_64"
},
"product_reference": "libldap-2_4-2-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-32bit-2.4.39-16.1.s390x"
},
"product_reference": "libldap-2_4-2-32bit-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64"
},
"product_reference": "libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.39-16.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.ppc64le"
},
"product_reference": "openldap2-2.4.39-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.s390x"
},
"product_reference": "openldap2-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.x86_64"
},
"product_reference": "openldap2-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.39-16.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.ppc64le"
},
"product_reference": "openldap2-back-meta-2.4.39-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.s390x"
},
"product_reference": "openldap2-back-meta-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.x86_64"
},
"product_reference": "openldap2-back-meta-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.39-16.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.ppc64le"
},
"product_reference": "openldap2-client-2.4.39-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.s390x"
},
"product_reference": "openldap2-client-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.x86_64"
},
"product_reference": "openldap2-client-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-perl-2.4.39-16.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:openldap2-back-perl-2.4.39-16.1.ppc64le"
},
"product_reference": "openldap2-back-perl-2.4.39-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-perl-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:openldap2-back-perl-2.4.39-16.1.s390x"
},
"product_reference": "openldap2-back-perl-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-perl-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:openldap2-back-perl-2.4.39-16.1.x86_64"
},
"product_reference": "openldap2-back-perl-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-2.4.39-16.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-2.4.39-16.1.ppc64le"
},
"product_reference": "openldap2-devel-2.4.39-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-2.4.39-16.1.s390x"
},
"product_reference": "openldap2-devel-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-2.4.39-16.1.x86_64"
},
"product_reference": "openldap2-devel-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-static-2.4.39-16.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-static-2.4.39-16.1.ppc64le"
},
"product_reference": "openldap2-devel-static-2.4.39-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-static-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-static-2.4.39-16.1.s390x"
},
"product_reference": "openldap2-devel-static-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-static-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-static-2.4.39-16.1.x86_64"
},
"product_reference": "openldap2-devel-static-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.39-16.1.ppc64le as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:libldap-2_4-2-2.4.39-16.1.ppc64le"
},
"product_reference": "libldap-2_4-2-2.4.39-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:libldap-2_4-2-2.4.39-16.1.s390x"
},
"product_reference": "libldap-2_4-2-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:libldap-2_4-2-2.4.39-16.1.x86_64"
},
"product_reference": "libldap-2_4-2-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:libldap-2_4-2-32bit-2.4.39-16.1.s390x"
},
"product_reference": "libldap-2_4-2-32bit-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64"
},
"product_reference": "libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.39-16.1.ppc64le as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:openldap2-2.4.39-16.1.ppc64le"
},
"product_reference": "openldap2-2.4.39-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:openldap2-2.4.39-16.1.s390x"
},
"product_reference": "openldap2-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:openldap2-2.4.39-16.1.x86_64"
},
"product_reference": "openldap2-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.39-16.1.ppc64le as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:openldap2-back-meta-2.4.39-16.1.ppc64le"
},
"product_reference": "openldap2-back-meta-2.4.39-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:openldap2-back-meta-2.4.39-16.1.s390x"
},
"product_reference": "openldap2-back-meta-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:openldap2-back-meta-2.4.39-16.1.x86_64"
},
"product_reference": "openldap2-back-meta-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.39-16.1.ppc64le as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:openldap2-client-2.4.39-16.1.ppc64le"
},
"product_reference": "openldap2-client-2.4.39-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:openldap2-client-2.4.39-16.1.s390x"
},
"product_reference": "openldap2-client-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:openldap2-client-2.4.39-16.1.x86_64"
},
"product_reference": "openldap2-client-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libldap-2_3-0-2.3.37-16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:compat-libldap-2_3-0-2.3.37-16.1.x86_64"
},
"product_reference": "compat-libldap-2_3-0-2.3.37-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.39-16.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.ppc64le"
},
"product_reference": "libldap-2_4-2-2.4.39-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.s390x"
},
"product_reference": "libldap-2_4-2-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.x86_64"
},
"product_reference": "libldap-2_4-2-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-32bit-2.4.39-16.1.s390x"
},
"product_reference": "libldap-2_4-2-32bit-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64"
},
"product_reference": "libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.39-16.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.ppc64le"
},
"product_reference": "openldap2-2.4.39-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.s390x"
},
"product_reference": "openldap2-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.x86_64"
},
"product_reference": "openldap2-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.39-16.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.ppc64le"
},
"product_reference": "openldap2-back-meta-2.4.39-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.s390x"
},
"product_reference": "openldap2-back-meta-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.x86_64"
},
"product_reference": "openldap2-back-meta-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.39-16.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.ppc64le"
},
"product_reference": "openldap2-client-2.4.39-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.39-16.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.s390x"
},
"product_reference": "openldap2-client-2.4.39-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.39-16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.x86_64"
},
"product_reference": "openldap2-client-2.4.39-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-1545",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1545"
}
],
"notes": [
{
"category": "general",
"text": "The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:libldap-2_4-2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12:openldap2-client-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-16.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-16.1.s390x",
"SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-16.1.x86_64",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-32bit-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:openldap2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:openldap2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:openldap2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:openldap2-back-meta-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:openldap2-back-meta-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:openldap2-back-meta-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:openldap2-client-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:openldap2-client-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:openldap2-client-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:compat-libldap-2_3-0-2.3.37-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-32bit-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-back-perl-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-back-perl-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-back-perl-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-static-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-static-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-static-2.4.39-16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1545",
"url": "https://www.suse.com/security/cve/CVE-2015-1545"
},
{
"category": "external",
"summary": "SUSE Bug 846389 for CVE-2015-1545",
"url": "https://bugzilla.suse.com/846389"
},
{
"category": "external",
"summary": "SUSE Bug 916897 for CVE-2015-1545",
"url": "https://bugzilla.suse.com/916897"
},
{
"category": "external",
"summary": "SUSE Bug 916914 for CVE-2015-1545",
"url": "https://bugzilla.suse.com/916914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:libldap-2_4-2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12:openldap2-client-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-16.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-16.1.s390x",
"SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-16.1.x86_64",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-32bit-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:openldap2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:openldap2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:openldap2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:openldap2-back-meta-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:openldap2-back-meta-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:openldap2-back-meta-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:openldap2-client-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:openldap2-client-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:openldap2-client-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:compat-libldap-2_3-0-2.3.37-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-32bit-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-back-perl-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-back-perl-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-back-perl-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-static-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-static-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-static-2.4.39-16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-05-18T08:42:31Z",
"details": "moderate"
}
],
"title": "CVE-2015-1545"
},
{
"cve": "CVE-2015-1546",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1546"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in the get_vrFilter function in servers/slapd/filter.c in OpenLDAP 2.4.40 allows remote attackers to cause a denial of service (crash) via a crafted search query with a matched values control.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:libldap-2_4-2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12:openldap2-client-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-16.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-16.1.s390x",
"SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-16.1.x86_64",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-32bit-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:openldap2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:openldap2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:openldap2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:openldap2-back-meta-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:openldap2-back-meta-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:openldap2-back-meta-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:openldap2-client-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:openldap2-client-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:openldap2-client-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:compat-libldap-2_3-0-2.3.37-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-32bit-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-back-perl-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-back-perl-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-back-perl-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-static-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-static-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-static-2.4.39-16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1546",
"url": "https://www.suse.com/security/cve/CVE-2015-1546"
},
{
"category": "external",
"summary": "SUSE Bug 916914 for CVE-2015-1546",
"url": "https://bugzilla.suse.com/916914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:libldap-2_4-2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12:openldap2-client-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-16.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-16.1.s390x",
"SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-16.1.x86_64",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-32bit-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:openldap2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:openldap2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:openldap2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:openldap2-back-meta-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:openldap2-back-meta-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:openldap2-back-meta-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server 12:openldap2-client-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server 12:openldap2-client-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server 12:openldap2-client-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:compat-libldap-2_3-0-2.3.37-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-32bit-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:libldap-2_4-2-32bit-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-back-meta-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:openldap2-client-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-back-perl-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-back-perl-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-back-perl-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-2.4.39-16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-static-2.4.39-16.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-static-2.4.39-16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:openldap2-devel-static-2.4.39-16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-05-18T08:42:31Z",
"details": "moderate"
}
],
"title": "CVE-2015-1546"
}
]
}
CERTFR-2015-AVI-139
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Apple Macintosh OS X. Elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service et une atteinte à la confidentialité des données.g
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Apple Macintosh OS X
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |
|---|---|---|---|
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eApple Macintosh OS X\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-3479",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3479"
},
{
"name": "CVE-2015-1134",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1134"
},
{
"name": "CVE-2015-1098",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1098"
},
{
"name": "CVE-2014-0238",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0238"
},
{
"name": "CVE-2015-1132",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1132"
},
{
"name": "CVE-2014-0207",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0207"
},
{
"name": "CVE-2015-1545",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1545"
},
{
"name": "CVE-2014-0118",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0118"
},
{
"name": "CVE-2014-3571",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3571"
},
{
"name": "CVE-2015-1117",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1117"
},
{
"name": "CVE-2015-1131",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1131"
},
{
"name": "CVE-2014-3669",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3669"
},
{
"name": "CVE-2015-1136",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1136"
},
{
"name": "CVE-2015-1144",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1144"
},
{
"name": "CVE-2015-1104",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1104"
},
{
"name": "CVE-2015-1105",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1105"
},
{
"name": "CVE-2014-4380",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4380"
},
{
"name": "CVE-2014-5120",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5120"
},
{
"name": "CVE-2015-1146",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1146"
},
{
"name": "CVE-2014-3538",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3538"
},
{
"name": "CVE-2015-1093",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1093"
},
{
"name": "CVE-2015-1141",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1141"
},
{
"name": "CVE-2014-0237",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0237"
},
{
"name": "CVE-2014-0117",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0117"
},
{
"name": "CVE-2014-4405",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4405"
},
{
"name": "CVE-2015-1102",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1102"
},
{
"name": "CVE-2014-0098",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0098"
},
{
"name": "CVE-2015-1137",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1137"
},
{
"name": "CVE-2014-2497",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2497"
},
{
"name": "CVE-2015-1091",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1091"
},
{
"name": "CVE-2015-1100",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1100"
},
{
"name": "CVE-2015-1133",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1133"
},
{
"name": "CVE-2014-4404",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4404"
},
{
"name": "CVE-2014-3710",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3710"
},
{
"name": "CVE-2015-1088",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1088"
},
{
"name": "CVE-2013-5704",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5704"
},
{
"name": "CVE-2014-0231",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0231"
},
{
"name": "CVE-2014-4670",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4670"
},
{
"name": "CVE-2015-1099",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1099"
},
{
"name": "CVE-2015-1138",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1138"
},
{
"name": "CVE-2014-8830",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8830"
},
{
"name": "CVE-2015-1145",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1145"
},
{
"name": "CVE-2015-0204",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0204"
},
{
"name": "CVE-2014-3480",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3480"
},
{
"name": "CVE-2014-3478",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3478"
},
{
"name": "CVE-2015-1101",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1101"
},
{
"name": "CVE-2015-1140",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1140"
},
{
"name": "CVE-2015-1089",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1089"
},
{
"name": "CVE-2014-8275",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8275"
},
{
"name": "CVE-2015-1546",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1546"
},
{
"name": "CVE-2014-4698",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4698"
},
{
"name": "CVE-2014-3668",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3668"
},
{
"name": "CVE-2015-1143",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1143"
},
{
"name": "CVE-2015-1130",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1130"
},
{
"name": "CVE-2013-6438",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-6438"
},
{
"name": "CVE-2014-3572",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3572"
},
{
"name": "CVE-2014-3569",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3569"
},
{
"name": "CVE-2014-3670",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3670"
},
{
"name": "CVE-2014-3587",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3587"
},
{
"name": "CVE-2015-1135",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1135"
},
{
"name": "CVE-2014-3487",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3487"
},
{
"name": "CVE-2014-4049",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4049"
},
{
"name": "CVE-2014-3597",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3597"
},
{
"name": "CVE-2014-3523",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3523"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Apple APPLE-SA-2015-04-08-2 du 09 avril 2015",
"url": "https://support.apple.com/en-us/HT204659"
}
],
"reference": "CERTFR-2015-AVI-139",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2015-04-09T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eApple Macintosh OS X\u003c/span\u003e. Elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire, un d\u00e9ni de\nservice et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.g\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Apple Macintosh OS X",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple APPLE-SA-2015-04-08-2 du 09 avril 2015",
"url": null
}
]
}
CERTFR-2019-AVI-620
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Apple. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un contournement de la politique de sécurité et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Apple | N/A | iOS versions 13.x antérieures à 13.3 | ||
| Apple | N/A | Xcode versions antérieures à 11.3 | ||
| Apple | N/A | watchOS versions 5.x antérieures à 5.3.4 | ||
| Apple | N/A | Mojave sans le correctif de sécurité 2019-002 | ||
| Apple | N/A | watchOS versions 6.x antérieures à 6.1.1 | ||
| Apple | N/A | tvOS versions antérieures à 13.3 | ||
| Apple | N/A | High Sierra sans le correctif de sécurité 2019-007 | ||
| Apple | N/A | iPadOS versions antérieures à 13.3 | ||
| Apple | Safari | Safari versions antérieures à 13.0.4 | ||
| Apple | macOS | macOS Catalina versions antérieures à 10.15.2 | ||
| Apple | N/A | iOS versions 12.x antérieures à 12.4.4 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "iOS versions 13.x ant\u00e9rieures \u00e0 13.3",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Xcode versions ant\u00e9rieures \u00e0 11.3",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "watchOS versions 5.x ant\u00e9rieures \u00e0 5.3.4",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mojave sans le correctif de s\u00e9curit\u00e9 2019-002",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "watchOS versions 6.x ant\u00e9rieures \u00e0 6.1.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "tvOS versions ant\u00e9rieures \u00e0 13.3",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "High Sierra sans le correctif de s\u00e9curit\u00e9 2019-007",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iPadOS versions ant\u00e9rieures \u00e0 13.3",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Safari versions ant\u00e9rieures \u00e0 13.0.4",
"product": {
"name": "Safari",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Catalina versions ant\u00e9rieures \u00e0 10.15.2",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iOS versions 12.x ant\u00e9rieures \u00e0 12.4.4",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-14463",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14463"
},
{
"name": "CVE-2019-8847",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8847"
},
{
"name": "CVE-2018-14468",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14468"
},
{
"name": "CVE-2018-16451",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16451"
},
{
"name": "CVE-2015-1545",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1545"
},
{
"name": "CVE-2012-2668",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-2668"
},
{
"name": "CVE-2012-1164",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1164"
},
{
"name": "CVE-2018-14881",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14881"
},
{
"name": "CVE-2017-16808",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16808"
},
{
"name": "CVE-2019-13057",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-13057"
},
{
"name": "CVE-2019-8840",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8840"
},
{
"name": "CVE-2019-8835",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8835"
},
{
"name": "CVE-2018-16227",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16227"
},
{
"name": "CVE-2019-15165",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15165"
},
{
"name": "CVE-2019-8832",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8832"
},
{
"name": "CVE-2019-8844",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8844"
},
{
"name": "CVE-2019-8857",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8857"
},
{
"name": "CVE-2019-8841",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8841"
},
{
"name": "CVE-2019-8837",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8837"
},
{
"name": "CVE-2018-16228",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16228"
},
{
"name": "CVE-2019-15164",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15164"
},
{
"name": "CVE-2019-8852",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8852"
},
{
"name": "CVE-2019-8839",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8839"
},
{
"name": "CVE-2018-14465",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14465"
},
{
"name": "CVE-2019-15162",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15162"
},
{
"name": "CVE-2018-10103",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10103"
},
{
"name": "CVE-2018-14880",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14880"
},
{
"name": "CVE-2019-15161",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15161"
},
{
"name": "CVE-2018-14470",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14470"
},
{
"name": "CVE-2019-8856",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8856"
},
{
"name": "CVE-2018-14469",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14469"
},
{
"name": "CVE-2018-14879",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14879"
},
{
"name": "CVE-2019-8853",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8853"
},
{
"name": "CVE-2013-4449",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4449"
},
{
"name": "CVE-2018-10105",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10105"
},
{
"name": "CVE-2018-14466",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14466"
},
{
"name": "CVE-2019-8830",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8830"
},
{
"name": "CVE-2019-8833",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8833"
},
{
"name": "CVE-2019-15163",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15163"
},
{
"name": "CVE-2018-16301",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16301"
},
{
"name": "CVE-2018-16230",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16230"
},
{
"name": "CVE-2018-16452",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16452"
},
{
"name": "CVE-2019-8848",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8848"
},
{
"name": "CVE-2019-8842",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8842"
},
{
"name": "CVE-2018-14464",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14464"
},
{
"name": "CVE-2018-14462",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14462"
},
{
"name": "CVE-2019-8838",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8838"
},
{
"name": "CVE-2019-15166",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15166"
},
{
"name": "CVE-2018-14461",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14461"
},
{
"name": "CVE-2019-8828",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8828"
},
{
"name": "CVE-2018-14467",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14467"
},
{
"name": "CVE-2019-13565",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-13565"
},
{
"name": "CVE-2019-8846",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8846"
},
{
"name": "CVE-2018-14882",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14882"
},
{
"name": "CVE-2019-15167",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15167"
},
{
"name": "CVE-2019-15903",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15903"
},
{
"name": "CVE-2018-16229",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16229"
},
{
"name": "CVE-2018-16300",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16300"
},
{
"name": "CVE-2019-8836",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8836"
}
],
"links": [],
"reference": "CERTFR-2019-AVI-620",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-12-11T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un contournement de la\npolitique de s\u00e9curit\u00e9 et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210792 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210792"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210789 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210789"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210787 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210787"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210785 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210785"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210796 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210796"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210791 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210791"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210790 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210790"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210788 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210788"
}
]
}
CERTFR-2015-AVI-139
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Apple Macintosh OS X. Elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service et une atteinte à la confidentialité des données.g
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Apple Macintosh OS X
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |
|---|---|---|---|
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eApple Macintosh OS X\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-3479",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3479"
},
{
"name": "CVE-2015-1134",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1134"
},
{
"name": "CVE-2015-1098",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1098"
},
{
"name": "CVE-2014-0238",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0238"
},
{
"name": "CVE-2015-1132",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1132"
},
{
"name": "CVE-2014-0207",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0207"
},
{
"name": "CVE-2015-1545",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1545"
},
{
"name": "CVE-2014-0118",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0118"
},
{
"name": "CVE-2014-3571",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3571"
},
{
"name": "CVE-2015-1117",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1117"
},
{
"name": "CVE-2015-1131",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1131"
},
{
"name": "CVE-2014-3669",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3669"
},
{
"name": "CVE-2015-1136",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1136"
},
{
"name": "CVE-2015-1144",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1144"
},
{
"name": "CVE-2015-1104",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1104"
},
{
"name": "CVE-2015-1105",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1105"
},
{
"name": "CVE-2014-4380",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4380"
},
{
"name": "CVE-2014-5120",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5120"
},
{
"name": "CVE-2015-1146",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1146"
},
{
"name": "CVE-2014-3538",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3538"
},
{
"name": "CVE-2015-1093",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1093"
},
{
"name": "CVE-2015-1141",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1141"
},
{
"name": "CVE-2014-0237",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0237"
},
{
"name": "CVE-2014-0117",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0117"
},
{
"name": "CVE-2014-4405",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4405"
},
{
"name": "CVE-2015-1102",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1102"
},
{
"name": "CVE-2014-0098",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0098"
},
{
"name": "CVE-2015-1137",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1137"
},
{
"name": "CVE-2014-2497",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2497"
},
{
"name": "CVE-2015-1091",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1091"
},
{
"name": "CVE-2015-1100",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1100"
},
{
"name": "CVE-2015-1133",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1133"
},
{
"name": "CVE-2014-4404",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4404"
},
{
"name": "CVE-2014-3710",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3710"
},
{
"name": "CVE-2015-1088",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1088"
},
{
"name": "CVE-2013-5704",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5704"
},
{
"name": "CVE-2014-0231",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0231"
},
{
"name": "CVE-2014-4670",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4670"
},
{
"name": "CVE-2015-1099",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1099"
},
{
"name": "CVE-2015-1138",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1138"
},
{
"name": "CVE-2014-8830",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8830"
},
{
"name": "CVE-2015-1145",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1145"
},
{
"name": "CVE-2015-0204",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0204"
},
{
"name": "CVE-2014-3480",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3480"
},
{
"name": "CVE-2014-3478",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3478"
},
{
"name": "CVE-2015-1101",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1101"
},
{
"name": "CVE-2015-1140",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1140"
},
{
"name": "CVE-2015-1089",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1089"
},
{
"name": "CVE-2014-8275",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8275"
},
{
"name": "CVE-2015-1546",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1546"
},
{
"name": "CVE-2014-4698",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4698"
},
{
"name": "CVE-2014-3668",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3668"
},
{
"name": "CVE-2015-1143",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1143"
},
{
"name": "CVE-2015-1130",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1130"
},
{
"name": "CVE-2013-6438",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-6438"
},
{
"name": "CVE-2014-3572",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3572"
},
{
"name": "CVE-2014-3569",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3569"
},
{
"name": "CVE-2014-3670",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3670"
},
{
"name": "CVE-2014-3587",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3587"
},
{
"name": "CVE-2015-1135",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1135"
},
{
"name": "CVE-2014-3487",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3487"
},
{
"name": "CVE-2014-4049",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4049"
},
{
"name": "CVE-2014-3597",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3597"
},
{
"name": "CVE-2014-3523",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3523"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Apple APPLE-SA-2015-04-08-2 du 09 avril 2015",
"url": "https://support.apple.com/en-us/HT204659"
}
],
"reference": "CERTFR-2015-AVI-139",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2015-04-09T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eApple Macintosh OS X\u003c/span\u003e. Elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire, un d\u00e9ni de\nservice et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.g\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Apple Macintosh OS X",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple APPLE-SA-2015-04-08-2 du 09 avril 2015",
"url": null
}
]
}
CERTFR-2019-AVI-620
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Apple. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un contournement de la politique de sécurité et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Apple | N/A | iOS versions 13.x antérieures à 13.3 | ||
| Apple | N/A | Xcode versions antérieures à 11.3 | ||
| Apple | N/A | watchOS versions 5.x antérieures à 5.3.4 | ||
| Apple | N/A | Mojave sans le correctif de sécurité 2019-002 | ||
| Apple | N/A | watchOS versions 6.x antérieures à 6.1.1 | ||
| Apple | N/A | tvOS versions antérieures à 13.3 | ||
| Apple | N/A | High Sierra sans le correctif de sécurité 2019-007 | ||
| Apple | N/A | iPadOS versions antérieures à 13.3 | ||
| Apple | Safari | Safari versions antérieures à 13.0.4 | ||
| Apple | macOS | macOS Catalina versions antérieures à 10.15.2 | ||
| Apple | N/A | iOS versions 12.x antérieures à 12.4.4 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "iOS versions 13.x ant\u00e9rieures \u00e0 13.3",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Xcode versions ant\u00e9rieures \u00e0 11.3",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "watchOS versions 5.x ant\u00e9rieures \u00e0 5.3.4",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mojave sans le correctif de s\u00e9curit\u00e9 2019-002",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "watchOS versions 6.x ant\u00e9rieures \u00e0 6.1.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "tvOS versions ant\u00e9rieures \u00e0 13.3",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "High Sierra sans le correctif de s\u00e9curit\u00e9 2019-007",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iPadOS versions ant\u00e9rieures \u00e0 13.3",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Safari versions ant\u00e9rieures \u00e0 13.0.4",
"product": {
"name": "Safari",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Catalina versions ant\u00e9rieures \u00e0 10.15.2",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iOS versions 12.x ant\u00e9rieures \u00e0 12.4.4",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-14463",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14463"
},
{
"name": "CVE-2019-8847",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8847"
},
{
"name": "CVE-2018-14468",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14468"
},
{
"name": "CVE-2018-16451",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16451"
},
{
"name": "CVE-2015-1545",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1545"
},
{
"name": "CVE-2012-2668",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-2668"
},
{
"name": "CVE-2012-1164",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1164"
},
{
"name": "CVE-2018-14881",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14881"
},
{
"name": "CVE-2017-16808",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16808"
},
{
"name": "CVE-2019-13057",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-13057"
},
{
"name": "CVE-2019-8840",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8840"
},
{
"name": "CVE-2019-8835",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8835"
},
{
"name": "CVE-2018-16227",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16227"
},
{
"name": "CVE-2019-15165",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15165"
},
{
"name": "CVE-2019-8832",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8832"
},
{
"name": "CVE-2019-8844",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8844"
},
{
"name": "CVE-2019-8857",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8857"
},
{
"name": "CVE-2019-8841",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8841"
},
{
"name": "CVE-2019-8837",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8837"
},
{
"name": "CVE-2018-16228",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16228"
},
{
"name": "CVE-2019-15164",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15164"
},
{
"name": "CVE-2019-8852",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8852"
},
{
"name": "CVE-2019-8839",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8839"
},
{
"name": "CVE-2018-14465",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14465"
},
{
"name": "CVE-2019-15162",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15162"
},
{
"name": "CVE-2018-10103",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10103"
},
{
"name": "CVE-2018-14880",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14880"
},
{
"name": "CVE-2019-15161",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15161"
},
{
"name": "CVE-2018-14470",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14470"
},
{
"name": "CVE-2019-8856",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8856"
},
{
"name": "CVE-2018-14469",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14469"
},
{
"name": "CVE-2018-14879",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14879"
},
{
"name": "CVE-2019-8853",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8853"
},
{
"name": "CVE-2013-4449",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4449"
},
{
"name": "CVE-2018-10105",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10105"
},
{
"name": "CVE-2018-14466",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14466"
},
{
"name": "CVE-2019-8830",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8830"
},
{
"name": "CVE-2019-8833",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8833"
},
{
"name": "CVE-2019-15163",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15163"
},
{
"name": "CVE-2018-16301",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16301"
},
{
"name": "CVE-2018-16230",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16230"
},
{
"name": "CVE-2018-16452",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16452"
},
{
"name": "CVE-2019-8848",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8848"
},
{
"name": "CVE-2019-8842",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8842"
},
{
"name": "CVE-2018-14464",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14464"
},
{
"name": "CVE-2018-14462",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14462"
},
{
"name": "CVE-2019-8838",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8838"
},
{
"name": "CVE-2019-15166",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15166"
},
{
"name": "CVE-2018-14461",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14461"
},
{
"name": "CVE-2019-8828",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8828"
},
{
"name": "CVE-2018-14467",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14467"
},
{
"name": "CVE-2019-13565",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-13565"
},
{
"name": "CVE-2019-8846",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8846"
},
{
"name": "CVE-2018-14882",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14882"
},
{
"name": "CVE-2019-15167",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15167"
},
{
"name": "CVE-2019-15903",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15903"
},
{
"name": "CVE-2018-16229",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16229"
},
{
"name": "CVE-2018-16300",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16300"
},
{
"name": "CVE-2019-8836",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8836"
}
],
"links": [],
"reference": "CERTFR-2019-AVI-620",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-12-11T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un contournement de la\npolitique de s\u00e9curit\u00e9 et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210792 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210792"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210789 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210789"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210787 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210787"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210785 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210785"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210796 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210796"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210791 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210791"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210790 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210790"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210788 du 10 d\u00e9cembre 2019",
"url": "https://support.apple.com/en-us/HT210788"
}
]
}
GSD-2015-1545
Vulnerability from gsd - Updated: 2023-12-13 01:20Details
The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2015-1545",
"description": "The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request.",
"id": "GSD-2015-1545",
"references": [
"https://www.suse.com/security/cve/CVE-2015-1545.html",
"https://www.debian.org/security/2015/dsa-3209",
"https://ubuntu.com/security/CVE-2015-1545",
"https://advisories.mageia.org/CVE-2015-1545.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2015-1545"
],
"details": "The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request.",
"id": "GSD-2015-1545",
"modified": "2023-12-13T01:20:05.065926Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-1545",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "72519",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/72519"
},
{
"name": "http://www.openldap.org/devel/gitweb.cgi?p=openldap.git;a=commit;h=c32e74763f77675b9e144126e375977ed6dc562c",
"refsource": "CONFIRM",
"url": "http://www.openldap.org/devel/gitweb.cgi?p=openldap.git;a=commit;h=c32e74763f77675b9e144126e375977ed6dc562c"
},
{
"name": "https://support.apple.com/HT204659",
"refsource": "CONFIRM",
"url": "https://support.apple.com/HT204659"
},
{
"name": "openldap-cve20151545-dos(100937)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100937"
},
{
"name": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988",
"refsource": "CONFIRM",
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"name": "DSA-3209",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2015/dsa-3209"
},
{
"name": "APPLE-SA-2015-04-08-2",
"refsource": "APPLE",
"url": "http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html"
},
{
"name": "openSUSE-SU-2015:1325",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00069.html"
},
{
"name": "1032399",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1032399"
},
{
"name": "MDVSA-2015:073",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:073"
},
{
"name": "MDVSA-2015:074",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:074"
},
{
"name": "http://www.openldap.org/its/?findid=8027",
"refsource": "CONFIRM",
"url": "http://www.openldap.org/its/?findid=8027"
},
{
"name": "62787",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/62787"
},
{
"name": "[oss-security] 20150207 Re: CVE request: two OpenLDAP DoS issues",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2015/02/07/3"
},
{
"name": "https://support.apple.com/kb/HT210788",
"refsource": "CONFIRM",
"url": "https://support.apple.com/kb/HT210788"
},
{
"name": "20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
"refsource": "BUGTRAQ",
"url": "https://seclists.org/bugtraq/2019/Dec/23"
},
{
"name": "20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
"refsource": "FULLDISC",
"url": "http://seclists.org/fulldisclosure/2019/Dec/26"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.18:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.25:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.26:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.34:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.35:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.21:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.22:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.30:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.31:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.38:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.39:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.19:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.20:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.27:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.28:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.29:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.36:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.37:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.23:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.24:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.32:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.33:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openldap:openldap:2.4.40:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-1545"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "72519",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/72519"
},
{
"name": "http://www.openldap.org/its/?findid=8027",
"refsource": "CONFIRM",
"tags": [
"Exploit",
"Vendor Advisory"
],
"url": "http://www.openldap.org/its/?findid=8027"
},
{
"name": "http://www.openldap.org/devel/gitweb.cgi?p=openldap.git;a=commit;h=c32e74763f77675b9e144126e375977ed6dc562c",
"refsource": "CONFIRM",
"tags": [],
"url": "http://www.openldap.org/devel/gitweb.cgi?p=openldap.git;a=commit;h=c32e74763f77675b9e144126e375977ed6dc562c"
},
{
"name": "62787",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/62787"
},
{
"name": "[oss-security] 20150207 Re: CVE request: two OpenLDAP DoS issues",
"refsource": "MLIST",
"tags": [],
"url": "http://www.openwall.com/lists/oss-security/2015/02/07/3"
},
{
"name": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988",
"refsource": "CONFIRM",
"tags": [],
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988"
},
{
"name": "MDVSA-2015:073",
"refsource": "MANDRIVA",
"tags": [],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:073"
},
{
"name": "MDVSA-2015:074",
"refsource": "MANDRIVA",
"tags": [],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:074"
},
{
"name": "DSA-3209",
"refsource": "DEBIAN",
"tags": [],
"url": "http://www.debian.org/security/2015/dsa-3209"
},
{
"name": "https://support.apple.com/HT204659",
"refsource": "CONFIRM",
"tags": [],
"url": "https://support.apple.com/HT204659"
},
{
"name": "APPLE-SA-2015-04-08-2",
"refsource": "APPLE",
"tags": [],
"url": "http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html"
},
{
"name": "openSUSE-SU-2015:1325",
"refsource": "SUSE",
"tags": [],
"url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00069.html"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html",
"refsource": "CONFIRM",
"tags": [],
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"name": "1032399",
"refsource": "SECTRACK",
"tags": [],
"url": "http://www.securitytracker.com/id/1032399"
},
{
"name": "openldap-cve20151545-dos(100937)",
"refsource": "XF",
"tags": [],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100937"
},
{
"name": "https://support.apple.com/kb/HT210788",
"refsource": "CONFIRM",
"tags": [],
"url": "https://support.apple.com/kb/HT210788"
},
{
"name": "20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
"refsource": "BUGTRAQ",
"tags": [],
"url": "https://seclists.org/bugtraq/2019/Dec/23"
},
{
"name": "20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
"refsource": "FULLDISC",
"tags": [],
"url": "http://seclists.org/fulldisclosure/2019/Dec/26"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2017-09-08T01:29Z",
"publishedDate": "2015-02-12T16:59Z"
}
}
}
FKIE_CVE-2015-1545
Vulnerability from fkie_nvd - Published: 2015-02-12 16:59 - Updated: 2025-04-12 10:46
Severity ?
Summary
The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html | ||
| cve@mitre.org | http://lists.opensuse.org/opensuse-updates/2015-07/msg00069.html | ||
| cve@mitre.org | http://seclists.org/fulldisclosure/2019/Dec/26 | ||
| cve@mitre.org | http://secunia.com/advisories/62787 | ||
| cve@mitre.org | http://www.debian.org/security/2015/dsa-3209 | ||
| cve@mitre.org | http://www.mandriva.com/security/advisories?name=MDVSA-2015:073 | ||
| cve@mitre.org | http://www.mandriva.com/security/advisories?name=MDVSA-2015:074 | ||
| cve@mitre.org | http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commit%3Bh=c32e74763f77675b9e144126e375977ed6dc562c | ||
| cve@mitre.org | http://www.openldap.org/its/?findid=8027 | Exploit, Vendor Advisory | |
| cve@mitre.org | http://www.openwall.com/lists/oss-security/2015/02/07/3 | ||
| cve@mitre.org | http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html | ||
| cve@mitre.org | http://www.securityfocus.com/bid/72519 | ||
| cve@mitre.org | http://www.securitytracker.com/id/1032399 | ||
| cve@mitre.org | https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988 | ||
| cve@mitre.org | https://exchange.xforce.ibmcloud.com/vulnerabilities/100937 | ||
| cve@mitre.org | https://seclists.org/bugtraq/2019/Dec/23 | ||
| cve@mitre.org | https://support.apple.com/HT204659 | ||
| cve@mitre.org | https://support.apple.com/kb/HT210788 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-updates/2015-07/msg00069.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://seclists.org/fulldisclosure/2019/Dec/26 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/62787 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.debian.org/security/2015/dsa-3209 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.mandriva.com/security/advisories?name=MDVSA-2015:073 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.mandriva.com/security/advisories?name=MDVSA-2015:074 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commit%3Bh=c32e74763f77675b9e144126e375977ed6dc562c | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openldap.org/its/?findid=8027 | Exploit, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2015/02/07/3 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/72519 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securitytracker.com/id/1032399 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://exchange.xforce.ibmcloud.com/vulnerabilities/100937 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://seclists.org/bugtraq/2019/Dec/23 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://support.apple.com/HT204659 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://support.apple.com/kb/HT210788 |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| openldap | openldap | 2.4.13 | |
| openldap | openldap | 2.4.14 | |
| openldap | openldap | 2.4.15 | |
| openldap | openldap | 2.4.16 | |
| openldap | openldap | 2.4.17 | |
| openldap | openldap | 2.4.18 | |
| openldap | openldap | 2.4.19 | |
| openldap | openldap | 2.4.20 | |
| openldap | openldap | 2.4.21 | |
| openldap | openldap | 2.4.22 | |
| openldap | openldap | 2.4.23 | |
| openldap | openldap | 2.4.24 | |
| openldap | openldap | 2.4.25 | |
| openldap | openldap | 2.4.26 | |
| openldap | openldap | 2.4.27 | |
| openldap | openldap | 2.4.28 | |
| openldap | openldap | 2.4.29 | |
| openldap | openldap | 2.4.30 | |
| openldap | openldap | 2.4.31 | |
| openldap | openldap | 2.4.32 | |
| openldap | openldap | 2.4.33 | |
| openldap | openldap | 2.4.34 | |
| openldap | openldap | 2.4.35 | |
| openldap | openldap | 2.4.36 | |
| openldap | openldap | 2.4.37 | |
| openldap | openldap | 2.4.38 | |
| openldap | openldap | 2.4.39 | |
| openldap | openldap | 2.4.40 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.13:*:*:*:*:*:*:*",
"matchCriteriaId": "E99FB859-D023-4B2B-A709-05E83A46E2A1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.14:*:*:*:*:*:*:*",
"matchCriteriaId": "8D2EEBC7-1FAF-43E2-A124-C387C02D9E2B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.15:*:*:*:*:*:*:*",
"matchCriteriaId": "95D242E4-D5EB-4785-A6EF-60B1E8E2B0EC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.16:*:*:*:*:*:*:*",
"matchCriteriaId": "F6FEDD9C-FDF7-456A-B06C-0A4A4443991D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.17:*:*:*:*:*:*:*",
"matchCriteriaId": "9245CDE2-B90A-4D47-BA20-A7869FF0A645",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.18:*:*:*:*:*:*:*",
"matchCriteriaId": "FB993E4D-E573-4495-97DE-465DDB2AA2DF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.19:*:*:*:*:*:*:*",
"matchCriteriaId": "D0F106A3-63D5-4D07-9440-6628DBA78BE5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.20:*:*:*:*:*:*:*",
"matchCriteriaId": "36CC03BC-DF34-43CD-90B0-27D23A1DD06A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.21:*:*:*:*:*:*:*",
"matchCriteriaId": "16C90FEE-527E-47F5-8840-517A55163D8E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.22:*:*:*:*:*:*:*",
"matchCriteriaId": "0FAEA812-BB47-47A3-A975-B3B8D30DBA36",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.23:*:*:*:*:*:*:*",
"matchCriteriaId": "5DE5D180-3972-40A0-ADAF-A4F3364D1381",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.24:*:*:*:*:*:*:*",
"matchCriteriaId": "AD76F376-00D8-4917-BF68-6EECC316C331",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.25:*:*:*:*:*:*:*",
"matchCriteriaId": "F7063C11-3BF5-4037-ADC3-0C7E9AF830B4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.26:*:*:*:*:*:*:*",
"matchCriteriaId": "CAE258EA-1B57-4189-AD5A-7E2ACF223167",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.27:*:*:*:*:*:*:*",
"matchCriteriaId": "C492F5F5-A6FD-4BED-890A-79254138CC0A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.28:*:*:*:*:*:*:*",
"matchCriteriaId": "A6F7FDE8-2E54-4162-AA5F-D81253AAC8FA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.29:*:*:*:*:*:*:*",
"matchCriteriaId": "693E3145-FDDB-4780-886B-6D7FC7B2C5B3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.30:*:*:*:*:*:*:*",
"matchCriteriaId": "1BF32056-CC6A-4B2B-8FAA-F573445B9B99",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.31:*:*:*:*:*:*:*",
"matchCriteriaId": "93B99338-4A1A-4483-8308-49BCCB325C30",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.32:*:*:*:*:*:*:*",
"matchCriteriaId": "FE652CE3-E16B-4062-8253-F3FB52A651EA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.33:*:*:*:*:*:*:*",
"matchCriteriaId": "2A30ED6D-1DB8-4563-B131-1532F97F9694",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.34:*:*:*:*:*:*:*",
"matchCriteriaId": "7764366D-29BB-4D75-A33C-7C17DA7496DE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.35:*:*:*:*:*:*:*",
"matchCriteriaId": "0A38D99B-370E-430A-A657-CD9FF72D0863",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.36:*:*:*:*:*:*:*",
"matchCriteriaId": "AB3D3034-D938-402D-A02F-3F4005C438AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.37:*:*:*:*:*:*:*",
"matchCriteriaId": "A7D979A0-3214-4DC6-A838-0AD2444CA5FD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.38:*:*:*:*:*:*:*",
"matchCriteriaId": "25B3EF5D-7889-4206-838C-E932AFCBE15D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.39:*:*:*:*:*:*:*",
"matchCriteriaId": "6B20FA14-9F5B-425D-ACEF-A2348252C39A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.4.40:*:*:*:*:*:*:*",
"matchCriteriaId": "43B01F94-261C-4718-A82D-28DAE9B67936",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request."
},
{
"lang": "es",
"value": "La funci\u00f3n deref_parseCtrl en servers/slapd/overlays/deref.c en OpenLDAP 2.4.13 hasta 2.4.40 permite a atacantes remotos causar una denegaci\u00f3n de servicio (referencia a puntero nulo y ca\u00edda) a trav\u00e9s de una lista de atributos vac\u00eda en un control de referencia en una solicitud de b\u00fasqueda."
}
],
"evaluatorComment": "\u003ca href=\"http://cwe.mitre.org/data/definitions/476.html\"\u003eCWE-476: NULL Pointer Dereference\u003c/a\u003e",
"id": "CVE-2015-1545",
"lastModified": "2025-04-12T10:46:40.837",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2015-02-12T16:59:06.143",
"references": [
{
"source": "cve@mitre.org",
"url": "http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html"
},
{
"source": "cve@mitre.org",
"url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00069.html"
},
{
"source": "cve@mitre.org",
"url": "http://seclists.org/fulldisclosure/2019/Dec/26"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/62787"
},
{
"source": "cve@mitre.org",
"url": "http://www.debian.org/security/2015/dsa-3209"
},
{
"source": "cve@mitre.org",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:073"
},
{
"source": "cve@mitre.org",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:074"
},
{
"source": "cve@mitre.org",
"url": "http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commit%3Bh=c32e74763f77675b9e144126e375977ed6dc562c"
},
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Vendor Advisory"
],
"url": "http://www.openldap.org/its/?findid=8027"
},
{
"source": "cve@mitre.org",
"url": "http://www.openwall.com/lists/oss-security/2015/02/07/3"
},
{
"source": "cve@mitre.org",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/72519"
},
{
"source": "cve@mitre.org",
"url": "http://www.securitytracker.com/id/1032399"
},
{
"source": "cve@mitre.org",
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100937"
},
{
"source": "cve@mitre.org",
"url": "https://seclists.org/bugtraq/2019/Dec/23"
},
{
"source": "cve@mitre.org",
"url": "https://support.apple.com/HT204659"
},
{
"source": "cve@mitre.org",
"url": "https://support.apple.com/kb/HT210788"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00069.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://seclists.org/fulldisclosure/2019/Dec/26"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/62787"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.debian.org/security/2015/dsa-3209"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:073"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:074"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commit%3Bh=c32e74763f77675b9e144126e375977ed6dc562c"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Vendor Advisory"
],
"url": "http://www.openldap.org/its/?findid=8027"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.openwall.com/lists/oss-security/2015/02/07/3"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/72519"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id/1032399"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100937"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://seclists.org/bugtraq/2019/Dec/23"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://support.apple.com/HT204659"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://support.apple.com/kb/HT210788"
}
],
"sourceIdentifier": "cve@mitre.org",
"vendorComments": [
{
"comment": "Note that the deref overlay is not enabled by default, so this vulnerability only affects sites that have explicitly configured their servers to load and enable the overlay. Since this overlay has never been documented, there are no sites outside of the OpenLDAP developer community with a legitimate reason to enable this module.",
"lastModified": "2015-02-25T11:33:12.727",
"organization": "openldap.org"
}
],
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
OPENSUSE-SU-2024:11121-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
libldap-2_4-2-2.4.59-69.3 on GA media
Notes
Title of the patch
libldap-2_4-2-2.4.59-69.3 on GA media
Description of the patch
These are all security issues fixed in the libldap-2_4-2-2.4.59-69.3 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-11121
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "libldap-2_4-2-2.4.59-69.3 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the libldap-2_4-2-2.4.59-69.3 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11121",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11121-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1545 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1545/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1546 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1546/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17740 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17740/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-13057 page",
"url": "https://www.suse.com/security/cve/CVE-2019-13057/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-13565 page",
"url": "https://www.suse.com/security/cve/CVE-2019-13565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-8027 page",
"url": "https://www.suse.com/security/cve/CVE-2020-8027/"
}
],
"title": "libldap-2_4-2-2.4.59-69.3 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11121-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libldap-2_4-2-2.4.59-69.3.aarch64",
"product": {
"name": "libldap-2_4-2-2.4.59-69.3.aarch64",
"product_id": "libldap-2_4-2-2.4.59-69.3.aarch64"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"product": {
"name": "libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"product_id": "libldap-2_4-2-32bit-2.4.59-69.3.aarch64"
}
},
{
"category": "product_version",
"name": "libldap-data-2.4.59-69.3.aarch64",
"product": {
"name": "libldap-data-2.4.59-69.3.aarch64",
"product_id": "libldap-data-2.4.59-69.3.aarch64"
}
},
{
"category": "product_version",
"name": "openldap2-2.4.59-69.3.aarch64",
"product": {
"name": "openldap2-2.4.59-69.3.aarch64",
"product_id": "openldap2-2.4.59-69.3.aarch64"
}
},
{
"category": "product_version",
"name": "openldap2-back-meta-2.4.59-69.3.aarch64",
"product": {
"name": "openldap2-back-meta-2.4.59-69.3.aarch64",
"product_id": "openldap2-back-meta-2.4.59-69.3.aarch64"
}
},
{
"category": "product_version",
"name": "openldap2-back-perl-2.4.59-69.3.aarch64",
"product": {
"name": "openldap2-back-perl-2.4.59-69.3.aarch64",
"product_id": "openldap2-back-perl-2.4.59-69.3.aarch64"
}
},
{
"category": "product_version",
"name": "openldap2-back-sock-2.4.59-69.3.aarch64",
"product": {
"name": "openldap2-back-sock-2.4.59-69.3.aarch64",
"product_id": "openldap2-back-sock-2.4.59-69.3.aarch64"
}
},
{
"category": "product_version",
"name": "openldap2-back-sql-2.4.59-69.3.aarch64",
"product": {
"name": "openldap2-back-sql-2.4.59-69.3.aarch64",
"product_id": "openldap2-back-sql-2.4.59-69.3.aarch64"
}
},
{
"category": "product_version",
"name": "openldap2-client-2.4.59-69.3.aarch64",
"product": {
"name": "openldap2-client-2.4.59-69.3.aarch64",
"product_id": "openldap2-client-2.4.59-69.3.aarch64"
}
},
{
"category": "product_version",
"name": "openldap2-contrib-2.4.59-69.3.aarch64",
"product": {
"name": "openldap2-contrib-2.4.59-69.3.aarch64",
"product_id": "openldap2-contrib-2.4.59-69.3.aarch64"
}
},
{
"category": "product_version",
"name": "openldap2-devel-2.4.59-69.3.aarch64",
"product": {
"name": "openldap2-devel-2.4.59-69.3.aarch64",
"product_id": "openldap2-devel-2.4.59-69.3.aarch64"
}
},
{
"category": "product_version",
"name": "openldap2-devel-32bit-2.4.59-69.3.aarch64",
"product": {
"name": "openldap2-devel-32bit-2.4.59-69.3.aarch64",
"product_id": "openldap2-devel-32bit-2.4.59-69.3.aarch64"
}
},
{
"category": "product_version",
"name": "openldap2-devel-static-2.4.59-69.3.aarch64",
"product": {
"name": "openldap2-devel-static-2.4.59-69.3.aarch64",
"product_id": "openldap2-devel-static-2.4.59-69.3.aarch64"
}
},
{
"category": "product_version",
"name": "openldap2-doc-2.4.59-69.3.aarch64",
"product": {
"name": "openldap2-doc-2.4.59-69.3.aarch64",
"product_id": "openldap2-doc-2.4.59-69.3.aarch64"
}
},
{
"category": "product_version",
"name": "openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"product": {
"name": "openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"product_id": "openldap2-ppolicy-check-password-1.2-69.3.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libldap-2_4-2-2.4.59-69.3.ppc64le",
"product": {
"name": "libldap-2_4-2-2.4.59-69.3.ppc64le",
"product_id": "libldap-2_4-2-2.4.59-69.3.ppc64le"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"product": {
"name": "libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"product_id": "libldap-2_4-2-32bit-2.4.59-69.3.ppc64le"
}
},
{
"category": "product_version",
"name": "libldap-data-2.4.59-69.3.ppc64le",
"product": {
"name": "libldap-data-2.4.59-69.3.ppc64le",
"product_id": "libldap-data-2.4.59-69.3.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-2.4.59-69.3.ppc64le",
"product": {
"name": "openldap2-2.4.59-69.3.ppc64le",
"product_id": "openldap2-2.4.59-69.3.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-back-meta-2.4.59-69.3.ppc64le",
"product": {
"name": "openldap2-back-meta-2.4.59-69.3.ppc64le",
"product_id": "openldap2-back-meta-2.4.59-69.3.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-back-perl-2.4.59-69.3.ppc64le",
"product": {
"name": "openldap2-back-perl-2.4.59-69.3.ppc64le",
"product_id": "openldap2-back-perl-2.4.59-69.3.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-back-sock-2.4.59-69.3.ppc64le",
"product": {
"name": "openldap2-back-sock-2.4.59-69.3.ppc64le",
"product_id": "openldap2-back-sock-2.4.59-69.3.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-back-sql-2.4.59-69.3.ppc64le",
"product": {
"name": "openldap2-back-sql-2.4.59-69.3.ppc64le",
"product_id": "openldap2-back-sql-2.4.59-69.3.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-client-2.4.59-69.3.ppc64le",
"product": {
"name": "openldap2-client-2.4.59-69.3.ppc64le",
"product_id": "openldap2-client-2.4.59-69.3.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-contrib-2.4.59-69.3.ppc64le",
"product": {
"name": "openldap2-contrib-2.4.59-69.3.ppc64le",
"product_id": "openldap2-contrib-2.4.59-69.3.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-devel-2.4.59-69.3.ppc64le",
"product": {
"name": "openldap2-devel-2.4.59-69.3.ppc64le",
"product_id": "openldap2-devel-2.4.59-69.3.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"product": {
"name": "openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"product_id": "openldap2-devel-32bit-2.4.59-69.3.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-devel-static-2.4.59-69.3.ppc64le",
"product": {
"name": "openldap2-devel-static-2.4.59-69.3.ppc64le",
"product_id": "openldap2-devel-static-2.4.59-69.3.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-doc-2.4.59-69.3.ppc64le",
"product": {
"name": "openldap2-doc-2.4.59-69.3.ppc64le",
"product_id": "openldap2-doc-2.4.59-69.3.ppc64le"
}
},
{
"category": "product_version",
"name": "openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"product": {
"name": "openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"product_id": "openldap2-ppolicy-check-password-1.2-69.3.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libldap-2_4-2-2.4.59-69.3.s390x",
"product": {
"name": "libldap-2_4-2-2.4.59-69.3.s390x",
"product_id": "libldap-2_4-2-2.4.59-69.3.s390x"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"product": {
"name": "libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"product_id": "libldap-2_4-2-32bit-2.4.59-69.3.s390x"
}
},
{
"category": "product_version",
"name": "libldap-data-2.4.59-69.3.s390x",
"product": {
"name": "libldap-data-2.4.59-69.3.s390x",
"product_id": "libldap-data-2.4.59-69.3.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-2.4.59-69.3.s390x",
"product": {
"name": "openldap2-2.4.59-69.3.s390x",
"product_id": "openldap2-2.4.59-69.3.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-back-meta-2.4.59-69.3.s390x",
"product": {
"name": "openldap2-back-meta-2.4.59-69.3.s390x",
"product_id": "openldap2-back-meta-2.4.59-69.3.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-back-perl-2.4.59-69.3.s390x",
"product": {
"name": "openldap2-back-perl-2.4.59-69.3.s390x",
"product_id": "openldap2-back-perl-2.4.59-69.3.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-back-sock-2.4.59-69.3.s390x",
"product": {
"name": "openldap2-back-sock-2.4.59-69.3.s390x",
"product_id": "openldap2-back-sock-2.4.59-69.3.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-back-sql-2.4.59-69.3.s390x",
"product": {
"name": "openldap2-back-sql-2.4.59-69.3.s390x",
"product_id": "openldap2-back-sql-2.4.59-69.3.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-client-2.4.59-69.3.s390x",
"product": {
"name": "openldap2-client-2.4.59-69.3.s390x",
"product_id": "openldap2-client-2.4.59-69.3.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-contrib-2.4.59-69.3.s390x",
"product": {
"name": "openldap2-contrib-2.4.59-69.3.s390x",
"product_id": "openldap2-contrib-2.4.59-69.3.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-devel-2.4.59-69.3.s390x",
"product": {
"name": "openldap2-devel-2.4.59-69.3.s390x",
"product_id": "openldap2-devel-2.4.59-69.3.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-devel-32bit-2.4.59-69.3.s390x",
"product": {
"name": "openldap2-devel-32bit-2.4.59-69.3.s390x",
"product_id": "openldap2-devel-32bit-2.4.59-69.3.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-devel-static-2.4.59-69.3.s390x",
"product": {
"name": "openldap2-devel-static-2.4.59-69.3.s390x",
"product_id": "openldap2-devel-static-2.4.59-69.3.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-doc-2.4.59-69.3.s390x",
"product": {
"name": "openldap2-doc-2.4.59-69.3.s390x",
"product_id": "openldap2-doc-2.4.59-69.3.s390x"
}
},
{
"category": "product_version",
"name": "openldap2-ppolicy-check-password-1.2-69.3.s390x",
"product": {
"name": "openldap2-ppolicy-check-password-1.2-69.3.s390x",
"product_id": "openldap2-ppolicy-check-password-1.2-69.3.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libldap-2_4-2-2.4.59-69.3.x86_64",
"product": {
"name": "libldap-2_4-2-2.4.59-69.3.x86_64",
"product_id": "libldap-2_4-2-2.4.59-69.3.x86_64"
}
},
{
"category": "product_version",
"name": "libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"product": {
"name": "libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"product_id": "libldap-2_4-2-32bit-2.4.59-69.3.x86_64"
}
},
{
"category": "product_version",
"name": "libldap-data-2.4.59-69.3.x86_64",
"product": {
"name": "libldap-data-2.4.59-69.3.x86_64",
"product_id": "libldap-data-2.4.59-69.3.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-2.4.59-69.3.x86_64",
"product": {
"name": "openldap2-2.4.59-69.3.x86_64",
"product_id": "openldap2-2.4.59-69.3.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-back-meta-2.4.59-69.3.x86_64",
"product": {
"name": "openldap2-back-meta-2.4.59-69.3.x86_64",
"product_id": "openldap2-back-meta-2.4.59-69.3.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-back-perl-2.4.59-69.3.x86_64",
"product": {
"name": "openldap2-back-perl-2.4.59-69.3.x86_64",
"product_id": "openldap2-back-perl-2.4.59-69.3.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-back-sock-2.4.59-69.3.x86_64",
"product": {
"name": "openldap2-back-sock-2.4.59-69.3.x86_64",
"product_id": "openldap2-back-sock-2.4.59-69.3.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-back-sql-2.4.59-69.3.x86_64",
"product": {
"name": "openldap2-back-sql-2.4.59-69.3.x86_64",
"product_id": "openldap2-back-sql-2.4.59-69.3.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-client-2.4.59-69.3.x86_64",
"product": {
"name": "openldap2-client-2.4.59-69.3.x86_64",
"product_id": "openldap2-client-2.4.59-69.3.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-contrib-2.4.59-69.3.x86_64",
"product": {
"name": "openldap2-contrib-2.4.59-69.3.x86_64",
"product_id": "openldap2-contrib-2.4.59-69.3.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-devel-2.4.59-69.3.x86_64",
"product": {
"name": "openldap2-devel-2.4.59-69.3.x86_64",
"product_id": "openldap2-devel-2.4.59-69.3.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-devel-32bit-2.4.59-69.3.x86_64",
"product": {
"name": "openldap2-devel-32bit-2.4.59-69.3.x86_64",
"product_id": "openldap2-devel-32bit-2.4.59-69.3.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-devel-static-2.4.59-69.3.x86_64",
"product": {
"name": "openldap2-devel-static-2.4.59-69.3.x86_64",
"product_id": "openldap2-devel-static-2.4.59-69.3.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-doc-2.4.59-69.3.x86_64",
"product": {
"name": "openldap2-doc-2.4.59-69.3.x86_64",
"product_id": "openldap2-doc-2.4.59-69.3.x86_64"
}
},
{
"category": "product_version",
"name": "openldap2-ppolicy-check-password-1.2-69.3.x86_64",
"product": {
"name": "openldap2-ppolicy-check-password-1.2-69.3.x86_64",
"product_id": "openldap2-ppolicy-check-password-1.2-69.3.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.59-69.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64"
},
"product_reference": "libldap-2_4-2-2.4.59-69.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.59-69.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le"
},
"product_reference": "libldap-2_4-2-2.4.59-69.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.59-69.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x"
},
"product_reference": "libldap-2_4-2-2.4.59-69.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-2.4.59-69.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64"
},
"product_reference": "libldap-2_4-2-2.4.59-69.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.59-69.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64"
},
"product_reference": "libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.59-69.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le"
},
"product_reference": "libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.59-69.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x"
},
"product_reference": "libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-2_4-2-32bit-2.4.59-69.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64"
},
"product_reference": "libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-data-2.4.59-69.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64"
},
"product_reference": "libldap-data-2.4.59-69.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-data-2.4.59-69.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le"
},
"product_reference": "libldap-data-2.4.59-69.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-data-2.4.59-69.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x"
},
"product_reference": "libldap-data-2.4.59-69.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libldap-data-2.4.59-69.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64"
},
"product_reference": "libldap-data-2.4.59-69.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.59-69.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64"
},
"product_reference": "openldap2-2.4.59-69.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.59-69.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le"
},
"product_reference": "openldap2-2.4.59-69.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.59-69.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x"
},
"product_reference": "openldap2-2.4.59-69.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-2.4.59-69.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64"
},
"product_reference": "openldap2-2.4.59-69.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.59-69.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64"
},
"product_reference": "openldap2-back-meta-2.4.59-69.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.59-69.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le"
},
"product_reference": "openldap2-back-meta-2.4.59-69.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.59-69.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x"
},
"product_reference": "openldap2-back-meta-2.4.59-69.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-meta-2.4.59-69.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64"
},
"product_reference": "openldap2-back-meta-2.4.59-69.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-perl-2.4.59-69.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64"
},
"product_reference": "openldap2-back-perl-2.4.59-69.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-perl-2.4.59-69.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le"
},
"product_reference": "openldap2-back-perl-2.4.59-69.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-perl-2.4.59-69.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x"
},
"product_reference": "openldap2-back-perl-2.4.59-69.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-perl-2.4.59-69.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64"
},
"product_reference": "openldap2-back-perl-2.4.59-69.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-sock-2.4.59-69.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64"
},
"product_reference": "openldap2-back-sock-2.4.59-69.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-sock-2.4.59-69.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le"
},
"product_reference": "openldap2-back-sock-2.4.59-69.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-sock-2.4.59-69.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x"
},
"product_reference": "openldap2-back-sock-2.4.59-69.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-sock-2.4.59-69.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64"
},
"product_reference": "openldap2-back-sock-2.4.59-69.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-sql-2.4.59-69.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64"
},
"product_reference": "openldap2-back-sql-2.4.59-69.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-sql-2.4.59-69.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le"
},
"product_reference": "openldap2-back-sql-2.4.59-69.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-sql-2.4.59-69.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x"
},
"product_reference": "openldap2-back-sql-2.4.59-69.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-back-sql-2.4.59-69.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64"
},
"product_reference": "openldap2-back-sql-2.4.59-69.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.59-69.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64"
},
"product_reference": "openldap2-client-2.4.59-69.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.59-69.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le"
},
"product_reference": "openldap2-client-2.4.59-69.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.59-69.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x"
},
"product_reference": "openldap2-client-2.4.59-69.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-client-2.4.59-69.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64"
},
"product_reference": "openldap2-client-2.4.59-69.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-contrib-2.4.59-69.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64"
},
"product_reference": "openldap2-contrib-2.4.59-69.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-contrib-2.4.59-69.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le"
},
"product_reference": "openldap2-contrib-2.4.59-69.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-contrib-2.4.59-69.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x"
},
"product_reference": "openldap2-contrib-2.4.59-69.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-contrib-2.4.59-69.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64"
},
"product_reference": "openldap2-contrib-2.4.59-69.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-2.4.59-69.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64"
},
"product_reference": "openldap2-devel-2.4.59-69.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-2.4.59-69.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le"
},
"product_reference": "openldap2-devel-2.4.59-69.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-2.4.59-69.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x"
},
"product_reference": "openldap2-devel-2.4.59-69.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-2.4.59-69.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64"
},
"product_reference": "openldap2-devel-2.4.59-69.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-32bit-2.4.59-69.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64"
},
"product_reference": "openldap2-devel-32bit-2.4.59-69.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-32bit-2.4.59-69.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le"
},
"product_reference": "openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-32bit-2.4.59-69.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x"
},
"product_reference": "openldap2-devel-32bit-2.4.59-69.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-32bit-2.4.59-69.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64"
},
"product_reference": "openldap2-devel-32bit-2.4.59-69.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-static-2.4.59-69.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64"
},
"product_reference": "openldap2-devel-static-2.4.59-69.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-static-2.4.59-69.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le"
},
"product_reference": "openldap2-devel-static-2.4.59-69.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-static-2.4.59-69.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x"
},
"product_reference": "openldap2-devel-static-2.4.59-69.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-devel-static-2.4.59-69.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64"
},
"product_reference": "openldap2-devel-static-2.4.59-69.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-doc-2.4.59-69.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64"
},
"product_reference": "openldap2-doc-2.4.59-69.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-doc-2.4.59-69.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le"
},
"product_reference": "openldap2-doc-2.4.59-69.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-doc-2.4.59-69.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x"
},
"product_reference": "openldap2-doc-2.4.59-69.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-doc-2.4.59-69.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64"
},
"product_reference": "openldap2-doc-2.4.59-69.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-ppolicy-check-password-1.2-69.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64"
},
"product_reference": "openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-ppolicy-check-password-1.2-69.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le"
},
"product_reference": "openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-ppolicy-check-password-1.2-69.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x"
},
"product_reference": "openldap2-ppolicy-check-password-1.2-69.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openldap2-ppolicy-check-password-1.2-69.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
},
"product_reference": "openldap2-ppolicy-check-password-1.2-69.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-1545",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1545"
}
],
"notes": [
{
"category": "general",
"text": "The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1545",
"url": "https://www.suse.com/security/cve/CVE-2015-1545"
},
{
"category": "external",
"summary": "SUSE Bug 846389 for CVE-2015-1545",
"url": "https://bugzilla.suse.com/846389"
},
{
"category": "external",
"summary": "SUSE Bug 916897 for CVE-2015-1545",
"url": "https://bugzilla.suse.com/916897"
},
{
"category": "external",
"summary": "SUSE Bug 916914 for CVE-2015-1545",
"url": "https://bugzilla.suse.com/916914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1545"
},
{
"cve": "CVE-2015-1546",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1546"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in the get_vrFilter function in servers/slapd/filter.c in OpenLDAP 2.4.40 allows remote attackers to cause a denial of service (crash) via a crafted search query with a matched values control.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1546",
"url": "https://www.suse.com/security/cve/CVE-2015-1546"
},
{
"category": "external",
"summary": "SUSE Bug 916914 for CVE-2015-1546",
"url": "https://bugzilla.suse.com/916914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-1546"
},
{
"cve": "CVE-2017-17740",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17740"
}
],
"notes": [
{
"category": "general",
"text": "contrib/slapd-modules/nops/nops.c in OpenLDAP through 2.4.45, when both the nops module and the memberof overlay are enabled, attempts to free a buffer that was allocated on the stack, which allows remote attackers to cause a denial of service (slapd crash) via a member MODDN operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17740",
"url": "https://www.suse.com/security/cve/CVE-2017-17740"
},
{
"category": "external",
"summary": "SUSE Bug 1073313 for CVE-2017-17740",
"url": "https://bugzilla.suse.com/1073313"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-17740"
},
{
"cve": "CVE-2019-13057",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-13057"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the server in OpenLDAP before 2.4.48. When the server administrator delegates rootDN (database admin) privileges for certain databases but wants to maintain isolation (e.g., for multi-tenant deployments), slapd does not properly stop a rootDN from requesting authorization as an identity from another database during a SASL bind or with a proxyAuthz (RFC 4370) control. (It is not a common configuration to deploy a system where the server administrator and a DB administrator enjoy different levels of trust.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-13057",
"url": "https://www.suse.com/security/cve/CVE-2019-13057"
},
{
"category": "external",
"summary": "SUSE Bug 1143273 for CVE-2019-13057",
"url": "https://bugzilla.suse.com/1143273"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-13057"
},
{
"cve": "CVE-2019-13565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-13565"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relying on the SASL security layers in slapd access controls, it is possible to obtain access that would otherwise be denied via a simple bind for any identity covered in those ACLs. After the first SASL bind is completed, the sasl_ssf value is retained for all new non-SASL connections. Depending on the ACL configuration, this can affect different types of operations (searches, modifications, etc.). In other words, a successful authorization step completed by one user affects the authorization requirement for a different user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-13565",
"url": "https://www.suse.com/security/cve/CVE-2019-13565"
},
{
"category": "external",
"summary": "SUSE Bug 1143194 for CVE-2019-13565",
"url": "https://bugzilla.suse.com/1143194"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-13565"
},
{
"cve": "CVE-2020-8027",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-8027"
}
],
"notes": [
{
"category": "general",
"text": "A Insecure Temporary File vulnerability in openldap2 of SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 15; openSUSE Leap 15.1, openSUSE Leap 15.2 allows local attackers to overwrite arbitrary files and gain access to the openldap2 configuration This issue affects: SUSE Linux Enterprise Server 15-LTSS openldap2 versions prior to 2.4.46-9.37.1. SUSE Linux Enterprise Server for SAP 15 openldap2 versions prior to 2.4.46-9.37.1. openSUSE Leap 15.1 openldap2 versions prior to 2.4.46-lp151.10.18.1. openSUSE Leap 15.2 openldap2 versions prior to 2.4.46-lp152.14.9.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-8027",
"url": "https://www.suse.com/security/cve/CVE-2020-8027"
},
{
"category": "external",
"summary": "SUSE Bug 1175568 for CVE-2020-8027",
"url": "https://bugzilla.suse.com/1175568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-2_4-2-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:libldap-data-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-meta-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-perl-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sock-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-back-sql-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-client-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-contrib-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-32bit-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-devel-static-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.s390x",
"openSUSE Tumbleweed:openldap2-doc-2.4.59-69.3.x86_64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.aarch64",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.ppc64le",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.s390x",
"openSUSE Tumbleweed:openldap2-ppolicy-check-password-1.2-69.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-8027"
}
]
}
GHSA-QWQQ-JVM7-RM7C
Vulnerability from github – Published: 2022-05-17 01:10 – Updated: 2025-04-12 12:45
VLAI?
Details
The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request.
{
"affected": [],
"aliases": [
"CVE-2015-1545"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2015-02-12T16:59:00Z",
"severity": "MODERATE"
},
"details": "The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request.",
"id": "GHSA-qwqq-jvm7-rm7c",
"modified": "2025-04-12T12:45:19Z",
"published": "2022-05-17T01:10:21Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-1545"
},
{
"type": "WEB",
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776988"
},
{
"type": "WEB",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100937"
},
{
"type": "WEB",
"url": "https://seclists.org/bugtraq/2019/Dec/23"
},
{
"type": "WEB",
"url": "https://support.apple.com/HT204659"
},
{
"type": "WEB",
"url": "https://support.apple.com/kb/HT210788"
},
{
"type": "WEB",
"url": "http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00069.html"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2019/Dec/26"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/62787"
},
{
"type": "WEB",
"url": "http://www.debian.org/security/2015/dsa-3209"
},
{
"type": "WEB",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:073"
},
{
"type": "WEB",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:074"
},
{
"type": "WEB",
"url": "http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commit%3Bh=c32e74763f77675b9e144126e375977ed6dc562c"
},
{
"type": "WEB",
"url": "http://www.openldap.org/devel/gitweb.cgi?p=openldap.git;a=commit;h=c32e74763f77675b9e144126e375977ed6dc562c"
},
{
"type": "WEB",
"url": "http://www.openldap.org/its/?findid=8027"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2015/02/07/3"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/72519"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1032399"
}
],
"schema_version": "1.4.0",
"severity": []
}
CNVD-2015-01255
Vulnerability from cnvd - Published: 2015-02-27
VLAI Severity ?
Title
OpenLDAP拒绝服务漏洞
Description
OpenLDAP是一款开放源代码的轻量级目录访问协议(LDAP)实现。
OpenLDAP 2.4.13至2.4.40存在拒绝服务漏洞,远程攻击者可借助特制的搜索请求利用该漏洞造成拒绝服务(空指针逆向引用和崩溃)。
Severity
中
Patch Name
OpenLDAP拒绝服务漏洞的补丁
Patch Description
OpenLDAP是一款开放源代码的轻量级目录访问协议(LDAP)实现。
OpenLDAP 2.4.13至2.4.40存在拒绝服务漏洞,远程攻击者可借助特制的搜索请求利用该漏洞造成拒绝服务(空指针逆向引用和崩溃)。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
用户可参考如下厂商提供的安全公告获取补丁以修复该漏洞:http://xforce.iss.net/xforce/xfdb/100937
Reference
http://xforce.iss.net/xforce/xfdb/100937
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1545
Impacted products
| Name | Openldap OpenLDAP 2.4.13-2.4.40 |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2015-1545"
}
},
"description": "OpenLDAP\u662f\u4e00\u6b3e\u5f00\u653e\u6e90\u4ee3\u7801\u7684\u8f7b\u91cf\u7ea7\u76ee\u5f55\u8bbf\u95ee\u534f\u8bae\uff08LDAP\uff09\u5b9e\u73b0\u3002\r\n\r\nOpenLDAP 2.4.13\u81f32.4.40\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684\u641c\u7d22\u8bf7\u6c42\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff08\u7a7a\u6307\u9488\u9006\u5411\u5f15\u7528\u548c\u5d29\u6e83\uff09\u3002",
"discovererName": "unknown",
"formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u53d6\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1ahttp://xforce.iss.net/xforce/xfdb/100937",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2015-01255",
"openTime": "2015-02-27",
"patchDescription": "OpenLDAP\u662f\u4e00\u6b3e\u5f00\u653e\u6e90\u4ee3\u7801\u7684\u8f7b\u91cf\u7ea7\u76ee\u5f55\u8bbf\u95ee\u534f\u8bae\uff08LDAP\uff09\u5b9e\u73b0\u3002\r\n\r\nOpenLDAP 2.4.13\u81f32.4.40\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684\u641c\u7d22\u8bf7\u6c42\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff08\u7a7a\u6307\u9488\u9006\u5411\u5f15\u7528\u548c\u5d29\u6e83\uff09\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "OpenLDAP\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": "Openldap OpenLDAP 2.4.13-2.4.40"
},
"referenceLink": "http://xforce.iss.net/xforce/xfdb/100937\r\nhttp://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1545",
"serverity": "\u4e2d",
"submitTime": "2015-02-21",
"title": "OpenLDAP\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…