Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2020-8032 (GCVE-0-2020-8032)
Vulnerability from cvelistv5 – Published: 2021-02-25 09:15 – Updated: 2024-09-16 20:03
VLAI?
EPSS
Summary
A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions.
Severity ?
6.7 (Medium)
CWE
- CWE-377 - Insecure Temporary File
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
Credits
Johannes Segitz of SUSE
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T09:48:24.966Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1180669"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Factory",
"vendor": "openSUSE",
"versions": [
{
"lessThanOrEqual": "2.1.27-4.2",
"status": "affected",
"version": "cyrus-sasl",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Johannes Segitz of SUSE"
}
],
"datePublic": "2021-02-25T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-377",
"description": "CWE-377: Insecure Temporary File",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-02-25T09:15:17",
"orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
"shortName": "suse"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1180669"
}
],
"source": {
"advisory": "https://bugzilla.suse.com/show_bug.cgi?id=1180669",
"defect": [
"1180669"
],
"discovery": "INTERNAL"
},
"title": "Local privilege escalation to root due to insecure tmp file usage",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@suse.com",
"DATE_PUBLIC": "2021-02-25T00:00:00.000Z",
"ID": "CVE-2020-8032",
"STATE": "PUBLIC",
"TITLE": "Local privilege escalation to root due to insecure tmp file usage"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Factory",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "cyrus-sasl",
"version_value": "2.1.27-4.2"
}
]
}
}
]
},
"vendor_name": "openSUSE"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Johannes Segitz of SUSE"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-377: Insecure Temporary File"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.suse.com/show_bug.cgi?id=1180669",
"refsource": "CONFIRM",
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1180669"
}
]
},
"source": {
"advisory": "https://bugzilla.suse.com/show_bug.cgi?id=1180669",
"defect": [
"1180669"
],
"discovery": "INTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
"assignerShortName": "suse",
"cveId": "CVE-2020-8032",
"datePublished": "2021-02-25T09:15:17.275483Z",
"dateReserved": "2020-01-27T00:00:00",
"dateUpdated": "2024-09-16T20:03:06.806Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:opensuse:cyrus-sasl:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"2.1.27\", \"matchCriteriaId\": \"D32B168D-F48F-40BD-B4F3-07E0EDCB9014\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions.\"}, {\"lang\": \"es\", \"value\": \"Una vulnerabilidad de Archivo Temporal No Seguro en el paquete de cyrus-sasl de openSUSE Factory, permite a atacantes locales escalar a root.\u0026#xa0;Este problema afecta a: openSUSE Factory cyrus-sasl versi\\u00f3n 2.1.27-4.2 y versiones anteriores\"}]",
"id": "CVE-2020-8032",
"lastModified": "2024-11-21T05:38:15.533",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"meissner@suse.de\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N\", \"baseScore\": 6.7, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.4, \"impactScore\": 5.2}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.0, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.0, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:M/Au:N/C:C/I:C/A:C\", \"baseScore\": 6.9, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 3.4, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2021-02-25T10:15:12.773",
"references": "[{\"url\": \"https://bugzilla.suse.com/show_bug.cgi?id=1180669\", \"source\": \"meissner@suse.de\", \"tags\": [\"Exploit\", \"Issue Tracking\", \"Vendor Advisory\"]}, {\"url\": \"https://bugzilla.suse.com/show_bug.cgi?id=1180669\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Issue Tracking\", \"Vendor Advisory\"]}]",
"sourceIdentifier": "meissner@suse.de",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"meissner@suse.de\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-377\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2020-8032\",\"sourceIdentifier\":\"meissner@suse.de\",\"published\":\"2021-02-25T10:15:12.773\",\"lastModified\":\"2024-11-21T05:38:15.533\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad de Archivo Temporal No Seguro en el paquete de cyrus-sasl de openSUSE Factory, permite a atacantes locales escalar a root.\u0026#xa0;Este problema afecta a: openSUSE Factory cyrus-sasl versi\u00f3n 2.1.27-4.2 y versiones anteriores\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"meissner@suse.de\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N\",\"baseScore\":6.7,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.4,\"impactScore\":5.2},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.0,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.0,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":6.9,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.4,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"meissner@suse.de\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-377\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:opensuse:cyrus-sasl:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.1.27\",\"matchCriteriaId\":\"D32B168D-F48F-40BD-B4F3-07E0EDCB9014\"}]}]}],\"references\":[{\"url\":\"https://bugzilla.suse.com/show_bug.cgi?id=1180669\",\"source\":\"meissner@suse.de\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.suse.com/show_bug.cgi?id=1180669\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Vendor Advisory\"]}]}}"
}
}
GHSA-RG43-4X9M-W9JH
Vulnerability from github – Published: 2022-05-24 17:43 – Updated: 2022-05-24 17:43
VLAI?
Details
A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions.
{
"affected": [],
"aliases": [
"CVE-2020-8032"
],
"database_specific": {
"cwe_ids": [
"CWE-377"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2021-02-25T10:15:00Z",
"severity": "HIGH"
},
"details": "A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions.",
"id": "GHSA-rg43-4x9m-w9jh",
"modified": "2022-05-24T17:43:02Z",
"published": "2022-05-24T17:43:02Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8032"
},
{
"type": "WEB",
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1180669"
}
],
"schema_version": "1.4.0",
"severity": []
}
GSD-2020-8032
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2020-8032",
"description": "A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions.",
"id": "GSD-2020-8032",
"references": [
"https://www.suse.com/security/cve/CVE-2020-8032.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2020-8032"
],
"details": "A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions.",
"id": "GSD-2020-8032",
"modified": "2023-12-13T01:21:54.312125Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security@suse.com",
"DATE_PUBLIC": "2021-02-25T00:00:00.000Z",
"ID": "CVE-2020-8032",
"STATE": "PUBLIC",
"TITLE": "Local privilege escalation to root due to insecure tmp file usage"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Factory",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "cyrus-sasl",
"version_value": "2.1.27-4.2"
}
]
}
}
]
},
"vendor_name": "openSUSE"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Johannes Segitz of SUSE"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-377: Insecure Temporary File"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.suse.com/show_bug.cgi?id=1180669",
"refsource": "CONFIRM",
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1180669"
}
]
},
"source": {
"advisory": "https://bugzilla.suse.com/show_bug.cgi?id=1180669",
"defect": [
"1180669"
],
"discovery": "INTERNAL"
}
},
"gitlab.com": {
"advisories": [
{
"affected_range": "\u003c=2.1.27",
"affected_versions": "All versions up to 2.1.27",
"cvss_v2": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"cvss_v3": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"cwe_ids": [
"CWE-1035",
"CWE-377",
"CWE-937"
],
"date": "2021-03-03",
"description": "A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root.",
"fixed_versions": [],
"identifier": "CVE-2020-8032",
"identifiers": [
"CVE-2020-8032"
],
"not_impacted": "",
"package_slug": "conan/cyrus-sasl",
"pubdate": "2021-02-25",
"solution": "Unfortunately, there is no solution available yet.",
"title": "Insecure Temporary File",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2020-8032",
"https://bugzilla.suse.com/show_bug.cgi?id=1180669"
],
"uuid": "0b3afbb2-583d-4292-838a-a3395a8a8df5"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:opensuse:cyrus-sasl:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.1.27",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security@suse.com",
"ID": "CVE-2020-8032"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-377"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.suse.com/show_bug.cgi?id=1180669",
"refsource": "CONFIRM",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1180669"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.0,
"impactScore": 5.9
}
},
"lastModifiedDate": "2021-03-03T15:41Z",
"publishedDate": "2021-02-25T10:15Z"
}
}
}
OPENSUSE-SU-2024:10709-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
cyrus-sasl-2.1.27-5.7 on GA media
Notes
Title of the patch
cyrus-sasl-2.1.27-5.7 on GA media
Description of the patch
These are all security issues fixed in the cyrus-sasl-2.1.27-5.7 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10709
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "cyrus-sasl-2.1.27-5.7 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the cyrus-sasl-2.1.27-5.7 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10709",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10709-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-19906 page",
"url": "https://www.suse.com/security/cve/CVE-2019-19906/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-8032 page",
"url": "https://www.suse.com/security/cve/CVE-2020-8032/"
}
],
"title": "cyrus-sasl-2.1.27-5.7 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10709-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cyrus-sasl-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-32bit-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-32bit-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-32bit-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-crammd5-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-crammd5-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-crammd5-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-devel-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-devel-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-devel-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-devel-32bit-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-devel-32bit-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-devel-32bit-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-digestmd5-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-digestmd5-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-digestmd5-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-gs2-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-gs2-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-gs2-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-gssapi-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-gssapi-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-gssapi-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-ntlm-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-ntlm-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-ntlm-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-otp-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-otp-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-otp-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-otp-32bit-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-otp-32bit-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-otp-32bit-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-plain-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-plain-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-plain-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-plain-32bit-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-plain-32bit-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-plain-32bit-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-scram-2.1.27-5.7.aarch64",
"product": {
"name": "cyrus-sasl-scram-2.1.27-5.7.aarch64",
"product_id": "cyrus-sasl-scram-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "libsasl2-3-2.1.27-5.7.aarch64",
"product": {
"name": "libsasl2-3-2.1.27-5.7.aarch64",
"product_id": "libsasl2-3-2.1.27-5.7.aarch64"
}
},
{
"category": "product_version",
"name": "libsasl2-3-32bit-2.1.27-5.7.aarch64",
"product": {
"name": "libsasl2-3-32bit-2.1.27-5.7.aarch64",
"product_id": "libsasl2-3-32bit-2.1.27-5.7.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "cyrus-sasl-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-32bit-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-32bit-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-32bit-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-crammd5-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-crammd5-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-crammd5-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-devel-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-devel-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-devel-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-devel-32bit-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-devel-32bit-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-devel-32bit-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-digestmd5-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-digestmd5-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-digestmd5-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-gs2-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-gs2-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-gs2-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-gssapi-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-gssapi-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-gssapi-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-ntlm-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-ntlm-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-ntlm-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-otp-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-otp-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-otp-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-otp-32bit-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-otp-32bit-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-otp-32bit-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-plain-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-plain-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-plain-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-plain-32bit-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-plain-32bit-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-plain-32bit-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-scram-2.1.27-5.7.ppc64le",
"product": {
"name": "cyrus-sasl-scram-2.1.27-5.7.ppc64le",
"product_id": "cyrus-sasl-scram-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "libsasl2-3-2.1.27-5.7.ppc64le",
"product": {
"name": "libsasl2-3-2.1.27-5.7.ppc64le",
"product_id": "libsasl2-3-2.1.27-5.7.ppc64le"
}
},
{
"category": "product_version",
"name": "libsasl2-3-32bit-2.1.27-5.7.ppc64le",
"product": {
"name": "libsasl2-3-32bit-2.1.27-5.7.ppc64le",
"product_id": "libsasl2-3-32bit-2.1.27-5.7.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cyrus-sasl-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-32bit-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-32bit-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-32bit-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-crammd5-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-crammd5-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-crammd5-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-devel-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-devel-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-devel-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-devel-32bit-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-devel-32bit-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-devel-32bit-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-digestmd5-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-digestmd5-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-digestmd5-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-gs2-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-gs2-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-gs2-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-gssapi-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-gssapi-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-gssapi-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-ntlm-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-ntlm-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-ntlm-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-otp-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-otp-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-otp-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-otp-32bit-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-otp-32bit-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-otp-32bit-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-plain-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-plain-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-plain-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-plain-32bit-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-plain-32bit-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-plain-32bit-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-scram-2.1.27-5.7.s390x",
"product": {
"name": "cyrus-sasl-scram-2.1.27-5.7.s390x",
"product_id": "cyrus-sasl-scram-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "libsasl2-3-2.1.27-5.7.s390x",
"product": {
"name": "libsasl2-3-2.1.27-5.7.s390x",
"product_id": "libsasl2-3-2.1.27-5.7.s390x"
}
},
{
"category": "product_version",
"name": "libsasl2-3-32bit-2.1.27-5.7.s390x",
"product": {
"name": "libsasl2-3-32bit-2.1.27-5.7.s390x",
"product_id": "libsasl2-3-32bit-2.1.27-5.7.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cyrus-sasl-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-32bit-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-32bit-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-32bit-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-crammd5-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-crammd5-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-crammd5-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-devel-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-devel-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-devel-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-devel-32bit-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-devel-32bit-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-devel-32bit-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-digestmd5-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-digestmd5-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-digestmd5-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-gs2-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-gs2-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-gs2-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-gssapi-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-gssapi-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-gssapi-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-ntlm-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-ntlm-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-ntlm-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-otp-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-otp-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-otp-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-otp-32bit-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-otp-32bit-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-otp-32bit-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-plain-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-plain-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-plain-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-plain-32bit-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-plain-32bit-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-plain-32bit-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "cyrus-sasl-scram-2.1.27-5.7.x86_64",
"product": {
"name": "cyrus-sasl-scram-2.1.27-5.7.x86_64",
"product_id": "cyrus-sasl-scram-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "libsasl2-3-2.1.27-5.7.x86_64",
"product": {
"name": "libsasl2-3-2.1.27-5.7.x86_64",
"product_id": "libsasl2-3-2.1.27-5.7.x86_64"
}
},
{
"category": "product_version",
"name": "libsasl2-3-32bit-2.1.27-5.7.x86_64",
"product": {
"name": "libsasl2-3-32bit-2.1.27-5.7.x86_64",
"product_id": "libsasl2-3-32bit-2.1.27-5.7.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-32bit-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-32bit-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-32bit-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-32bit-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-32bit-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-32bit-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-32bit-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-32bit-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-crammd5-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-crammd5-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-crammd5-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-crammd5-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-crammd5-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-crammd5-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-crammd5-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-crammd5-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-crammd5-32bit-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-devel-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-devel-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-devel-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-devel-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-devel-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-devel-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-devel-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-devel-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-devel-32bit-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-devel-32bit-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-devel-32bit-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-devel-32bit-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-devel-32bit-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-devel-32bit-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-devel-32bit-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-devel-32bit-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-digestmd5-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-digestmd5-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-digestmd5-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-digestmd5-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-digestmd5-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-digestmd5-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-digestmd5-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-digestmd5-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-digestmd5-32bit-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-gs2-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-gs2-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-gs2-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-gs2-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-gs2-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-gs2-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-gs2-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-gs2-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-gssapi-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-gssapi-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-gssapi-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-gssapi-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-gssapi-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-gssapi-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-gssapi-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-gssapi-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-gssapi-32bit-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-ntlm-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-ntlm-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-ntlm-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-ntlm-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-ntlm-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-ntlm-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-ntlm-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-ntlm-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-otp-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-otp-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-otp-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-otp-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-otp-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-otp-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-otp-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-otp-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-otp-32bit-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-otp-32bit-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-otp-32bit-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-otp-32bit-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-otp-32bit-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-otp-32bit-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-otp-32bit-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-otp-32bit-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-plain-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-plain-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-plain-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-plain-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-plain-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-plain-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-plain-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-plain-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-plain-32bit-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-plain-32bit-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-plain-32bit-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-plain-32bit-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-plain-32bit-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-plain-32bit-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-plain-32bit-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-plain-32bit-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-scram-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.aarch64"
},
"product_reference": "cyrus-sasl-scram-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-scram-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.ppc64le"
},
"product_reference": "cyrus-sasl-scram-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-scram-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.s390x"
},
"product_reference": "cyrus-sasl-scram-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cyrus-sasl-scram-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.x86_64"
},
"product_reference": "cyrus-sasl-scram-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsasl2-3-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.aarch64"
},
"product_reference": "libsasl2-3-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsasl2-3-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.ppc64le"
},
"product_reference": "libsasl2-3-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsasl2-3-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.s390x"
},
"product_reference": "libsasl2-3-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsasl2-3-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.x86_64"
},
"product_reference": "libsasl2-3-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsasl2-3-32bit-2.1.27-5.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.aarch64"
},
"product_reference": "libsasl2-3-32bit-2.1.27-5.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsasl2-3-32bit-2.1.27-5.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.ppc64le"
},
"product_reference": "libsasl2-3-32bit-2.1.27-5.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsasl2-3-32bit-2.1.27-5.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.s390x"
},
"product_reference": "libsasl2-3-32bit-2.1.27-5.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsasl2-3-32bit-2.1.27-5.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.x86_64"
},
"product_reference": "libsasl2-3-32bit-2.1.27-5.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-19906",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-19906"
}
],
"notes": [
{
"category": "general",
"text": "cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of-service in OpenLDAP via a malformed LDAP packet. The OpenLDAP crash is ultimately caused by an off-by-one error in _sasl_add_string in common.c in cyrus-sasl.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-19906",
"url": "https://www.suse.com/security/cve/CVE-2019-19906"
},
{
"category": "external",
"summary": "SUSE Bug 1159635 for CVE-2019-19906",
"url": "https://bugzilla.suse.com/1159635"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-19906"
},
{
"cve": "CVE-2020-8032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-8032"
}
],
"notes": [
{
"category": "general",
"text": "A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-8032",
"url": "https://www.suse.com/security/cve/CVE-2020-8032"
},
{
"category": "external",
"summary": "SUSE Bug 1180669 for CVE-2020-8032",
"url": "https://bugzilla.suse.com/1180669"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-crammd5-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-devel-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-devel-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-digestmd5-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gs2-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-gssapi-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-ntlm-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-otp-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-otp-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-plain-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-plain-32bit-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:cyrus-sasl-scram-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:libsasl2-3-2.1.27-5.7.x86_64",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.aarch64",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.ppc64le",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.s390x",
"openSUSE Tumbleweed:libsasl2-3-32bit-2.1.27-5.7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-8032"
}
]
}
CNVD-2021-14784
Vulnerability from cnvd - Published: 2021-03-06
VLAI Severity ?
Title
openSUSE权限提升漏洞
Description
openSUSE是德国SUSE公司的一套基于Linux的自由操作系统与开源社区项目。
openSUSE Factory 2.1.27-4.2 and prior versions存在安全漏洞,该漏洞源于一个不安全的临时文件漏洞,攻击者可利用该漏洞升级到root。
Severity
中
Patch Name
openSUSE权限提升漏洞的补丁
Patch Description
openSUSE是德国SUSE公司的一套基于Linux的自由操作系统与开源社区项目。
openSUSE Factory 2.1.27-4.2 and prior versions存在安全漏洞,该漏洞源于一个不安全的临时文件漏洞,攻击者可利用该漏洞升级到root。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布了漏洞修复程序,请及时关注更新: https://bugzilla.suse.com/show_bug.cgi?id=1180669
Reference
https://nvd.nist.gov/vuln/detail/CVE-2020-8032
Impacted products
| Name | SUSE openSUSE <=2.1.27 |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2020-8032",
"cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2020-8032"
}
},
"description": "openSUSE\u662f\u5fb7\u56fdSUSE\u516c\u53f8\u7684\u4e00\u5957\u57fa\u4e8eLinux\u7684\u81ea\u7531\u64cd\u4f5c\u7cfb\u7edf\u4e0e\u5f00\u6e90\u793e\u533a\u9879\u76ee\u3002\n\nopenSUSE Factory 2.1.27-4.2 and prior versions\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u4e00\u4e2a\u4e0d\u5b89\u5168\u7684\u4e34\u65f6\u6587\u4ef6\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5347\u7ea7\u5230root\u3002",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://bugzilla.suse.com/show_bug.cgi?id=1180669",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2021-14784",
"openTime": "2021-03-06",
"patchDescription": "openSUSE\u662f\u5fb7\u56fdSUSE\u516c\u53f8\u7684\u4e00\u5957\u57fa\u4e8eLinux\u7684\u81ea\u7531\u64cd\u4f5c\u7cfb\u7edf\u4e0e\u5f00\u6e90\u793e\u533a\u9879\u76ee\u3002\r\n\r\nopenSUSE Factory 2.1.27-4.2 and prior versions\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u4e00\u4e2a\u4e0d\u5b89\u5168\u7684\u4e34\u65f6\u6587\u4ef6\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5347\u7ea7\u5230root\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "openSUSE\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": "SUSE openSUSE \u003c=2.1.27"
},
"referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-8032",
"serverity": "\u4e2d",
"submitTime": "2021-02-28",
"title": "openSUSE\u6743\u9650\u63d0\u5347\u6f0f\u6d1e"
}
MSRC_CVE-2020-8032
Vulnerability from csaf_microsoft - Published: 2021-02-02 00:00 - Updated: 2021-12-16 00:00Summary
Local privilege escalation to root due to insecure tmp file usage
Notes
Additional Resources
To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer
The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2020-8032 Local privilege escalation to root due to insecure tmp file usage - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2021/msrc_cve-2020-8032.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "Local privilege escalation to root due to insecure tmp file usage",
"tracking": {
"current_release_date": "2021-12-16T00:00:00.000Z",
"generator": {
"date": "2025-10-19T21:43:39.680Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2020-8032",
"initial_release_date": "2021-02-02T00:00:00.000Z",
"revision_history": [
{
"date": "2021-03-04T00:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
},
{
"date": "2021-12-16T00:00:00.000Z",
"legacy_version": "1.1",
"number": "2",
"summary": "Added cyrus-sasl to CBL-Mariner 2.0"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "1.0",
"product": {
"name": "CBL Mariner 1.0",
"product_id": "16820"
}
},
{
"category": "product_version",
"name": "2.0",
"product": {
"name": "CBL Mariner 2.0",
"product_id": "17086"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003ccm1 cyrus-sasl 2.1.27-4",
"product": {
"name": "\u003ccm1 cyrus-sasl 2.1.27-4",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "cm1 cyrus-sasl 2.1.27-4",
"product": {
"name": "cm1 cyrus-sasl 2.1.27-4",
"product_id": "17039"
}
},
{
"category": "product_version_range",
"name": "\u003ccbl2 cyrus-sasl 2.1.27-10",
"product": {
"name": "\u003ccbl2 cyrus-sasl 2.1.27-10",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "cbl2 cyrus-sasl 2.1.27-10",
"product": {
"name": "cbl2 cyrus-sasl 2.1.27-10",
"product_id": "17040"
}
}
],
"category": "product_name",
"name": "cyrus-sasl"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccm1 cyrus-sasl 2.1.27-4 as a component of CBL Mariner 1.0",
"product_id": "16820-2"
},
"product_reference": "2",
"relates_to_product_reference": "16820"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cm1 cyrus-sasl 2.1.27-4 as a component of CBL Mariner 1.0",
"product_id": "17039-16820"
},
"product_reference": "17039",
"relates_to_product_reference": "16820"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 cyrus-sasl 2.1.27-10 as a component of CBL Mariner 2.0",
"product_id": "17086-1"
},
"product_reference": "1",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 cyrus-sasl 2.1.27-10 as a component of CBL Mariner 2.0",
"product_id": "17040-17086"
},
"product_reference": "17040",
"relates_to_product_reference": "17086"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-8032",
"cwe": {
"id": "CWE-377",
"name": "Insecure Temporary File"
},
"notes": [
{
"category": "general",
"text": "suse",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"17039-16820",
"17040-17086"
],
"known_affected": [
"16820-2",
"17086-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2020-8032 Local privilege escalation to root due to insecure tmp file usage - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2021/msrc_cve-2020-8032.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-04T00:00:00.000Z",
"details": "2.1.27-4:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"16820-2"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
},
{
"category": "vendor_fix",
"date": "2021-03-04T00:00:00.000Z",
"details": "2.1.27-10:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17086-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalsScore": 0.0,
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 7.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"16820-2",
"17086-1"
]
}
],
"title": "Local privilege escalation to root due to insecure tmp file usage"
}
]
}
FKIE_CVE-2020-8032
Vulnerability from fkie_nvd - Published: 2021-02-25 10:15 - Updated: 2024-11-21 05:38
Severity ?
6.7 (Medium) - CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
7.0 (High) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
7.0 (High) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions.
References
| URL | Tags | ||
|---|---|---|---|
| meissner@suse.de | https://bugzilla.suse.com/show_bug.cgi?id=1180669 | Exploit, Issue Tracking, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.suse.com/show_bug.cgi?id=1180669 | Exploit, Issue Tracking, Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| opensuse | cyrus-sasl | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:opensuse:cyrus-sasl:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D32B168D-F48F-40BD-B4F3-07E0EDCB9014",
"versionEndIncluding": "2.1.27",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions."
},
{
"lang": "es",
"value": "Una vulnerabilidad de Archivo Temporal No Seguro en el paquete de cyrus-sasl de openSUSE Factory, permite a atacantes locales escalar a root.\u0026#xa0;Este problema afecta a: openSUSE Factory cyrus-sasl versi\u00f3n 2.1.27-4.2 y versiones anteriores"
}
],
"id": "CVE-2020-8032",
"lastModified": "2024-11-21T05:38:15.533",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.4,
"impactScore": 5.2,
"source": "meissner@suse.de",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.0,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-02-25T10:15:12.773",
"references": [
{
"source": "meissner@suse.de",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1180669"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1180669"
}
],
"sourceIdentifier": "meissner@suse.de",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-377"
}
],
"source": "meissner@suse.de",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…