Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-1949 (GCVE-0-2022-1949)
Vulnerability from cvelistv5 – Published: 2022-06-01 15:08 – Updated: 2024-08-03 00:24
VLAI?
EPSS
Summary
An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.
Severity ?
No CVSS data available.
CWE
- Improper Access Control
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| n/a | 389-ds-base |
Affected:
389-ds-base-2.0
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T00:24:42.623Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2091781"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "389-ds-base",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "389-ds-base-2.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Improper Access Control",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-06-01T15:08:52.000Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2091781"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2022-1949",
"datePublished": "2022-06-01T15:08:52.000Z",
"dateReserved": "2022-05-31T00:00:00.000Z",
"dateUpdated": "2024-08-03T00:24:42.623Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:389_directory_server:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.3.0.0\", \"versionEndIncluding\": \"2.0.0\", \"matchCriteriaId\": \"A6C73360-00B0-4F00-9985-2498BDB2749C\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:directory_server:11.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2A169F6D-88A5-4631-9D30-519350ACFE6E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:directory_server:12.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A3DAF61A-58A9-41A6-A4DC-64148055B0C1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F4CFF558-3C47-480D-A2F0-BABF26042943\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A930E247-0B43-43CB-98FF-6CE7B8189835\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"80E516C0-98A4-4ADE-B69F-66A772E2BAAA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.\"}, {\"lang\": \"es\", \"value\": \"Una vulnerabilidad de omisi\\u00f3n de control de acceso encontrada en 389-ds-base. Ese manejo inapropiado del filtro que dar\\u00eda resultados incorrectos, pero a medida que ha avanzado, puede determinarse que en realidad es una omisi\\u00f3n de control de acceso. Esto puede permitir a cualquier usuario remoto no autenticado emitir un filtro que permita buscar elementos de la base de datos a los que no presenta acceso, incluyendo pero no limit\\u00e1ndose a los hashes de userPassword y otros datos confidenciales\"}]",
"id": "CVE-2022-1949",
"lastModified": "2024-12-13T18:47:19.243",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:N/A:N\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2022-06-02T14:15:34.257",
"references": "[{\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2091781\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2091781\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Patch\", \"Third Party Advisory\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-639\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2022-1949\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2022-06-02T14:15:34.257\",\"lastModified\":\"2024-12-13T18:47:19.243\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad de omisi\u00f3n de control de acceso encontrada en 389-ds-base. Ese manejo inapropiado del filtro que dar\u00eda resultados incorrectos, pero a medida que ha avanzado, puede determinarse que en realidad es una omisi\u00f3n de control de acceso. Esto puede permitir a cualquier usuario remoto no autenticado emitir un filtro que permita buscar elementos de la base de datos a los que no presenta acceso, incluyendo pero no limit\u00e1ndose a los hashes de userPassword y otros datos confidenciales\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-639\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:389_directory_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.3.0.0\",\"versionEndIncluding\":\"2.0.0\",\"matchCriteriaId\":\"A6C73360-00B0-4F00-9985-2498BDB2749C\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:directory_server:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A169F6D-88A5-4631-9D30-519350ACFE6E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:directory_server:12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3DAF61A-58A9-41A6-A4DC-64148055B0C1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4CFF558-3C47-480D-A2F0-BABF26042943\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A930E247-0B43-43CB-98FF-6CE7B8189835\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80E516C0-98A4-4ADE-B69F-66A772E2BAAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD\"}]}]}],\"references\":[{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2091781\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2091781\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]}]}}"
}
}
GSD-2022-1949
Vulnerability from gsd - Updated: 2023-12-13 01:19Details
An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2022-1949",
"description": "An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.",
"id": "GSD-2022-1949",
"references": [
"https://www.suse.com/security/cve/CVE-2022-1949.html",
"https://advisories.mageia.org/CVE-2022-1949.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2022-1949"
],
"details": "An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.",
"id": "GSD-2022-1949",
"modified": "2023-12-13T01:19:28.379090Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2022-1949",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "389-ds-base",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "389-ds-base-2.0"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Improper Access Control"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=2091781",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2091781"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:port389:389-ds-base:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.0.0",
"versionStartIncluding": "1.3.0.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:directory_server:11.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:directory_server:12.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2022-1949"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-863"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=2091781",
"refsource": "MISC",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2091781"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
},
"lastModifiedDate": "2022-06-13T12:59Z",
"publishedDate": "2022-06-02T14:15Z"
}
}
}
FKIE_CVE-2022-1949
Vulnerability from fkie_nvd - Published: 2022-06-02 14:15 - Updated: 2024-12-13 18:47
Severity ?
Summary
An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.
References
| URL | Tags | ||
|---|---|---|---|
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=2091781 | Issue Tracking, Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=2091781 | Issue Tracking, Patch, Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| redhat | 389_directory_server | * | |
| redhat | directory_server | 11.0 | |
| redhat | directory_server | 12.0 | |
| redhat | enterprise_linux | 8.0 | |
| redhat | enterprise_linux | 9.0 | |
| fedoraproject | fedora | 34 | |
| fedoraproject | fedora | 35 | |
| fedoraproject | fedora | 36 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:redhat:389_directory_server:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A6C73360-00B0-4F00-9985-2498BDB2749C",
"versionEndIncluding": "2.0.0",
"versionStartIncluding": "1.3.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:directory_server:11.0:*:*:*:*:*:*:*",
"matchCriteriaId": "2A169F6D-88A5-4631-9D30-519350ACFE6E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:directory_server:12.0:*:*:*:*:*:*:*",
"matchCriteriaId": "A3DAF61A-58A9-41A6-A4DC-64148055B0C1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7F6FB57C-2BC7-487C-96DD-132683AEB35D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
"matchCriteriaId": "A930E247-0B43-43CB-98FF-6CE7B8189835",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
"matchCriteriaId": "80E516C0-98A4-4ADE-B69F-66A772E2BAAA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
"matchCriteriaId": "5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data."
},
{
"lang": "es",
"value": "Una vulnerabilidad de omisi\u00f3n de control de acceso encontrada en 389-ds-base. Ese manejo inapropiado del filtro que dar\u00eda resultados incorrectos, pero a medida que ha avanzado, puede determinarse que en realidad es una omisi\u00f3n de control de acceso. Esto puede permitir a cualquier usuario remoto no autenticado emitir un filtro que permita buscar elementos de la base de datos a los que no presenta acceso, incluyendo pero no limit\u00e1ndose a los hashes de userPassword y otros datos confidenciales"
}
],
"id": "CVE-2022-1949",
"lastModified": "2024-12-13T18:47:19.243",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-06-02T14:15:34.257",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2091781"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2091781"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-639"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
SUSE-SU-2022:2295-1
Vulnerability from csaf_suse - Published: 2022-07-06 11:34 - Updated: 2022-07-06 11:34Summary
Security update for 389-ds
Notes
Title of the patch
Security update for 389-ds
Description of the patch
This update for 389-ds fixes the following issues:
- CVE-2021-4091: Fixed double free in psearch (bsc#1195324).
- CVE-2022-1949: Fixed full access control bypass with simple crafted query (bsc#1199889).
Patchnames
SUSE-2022-2295,SUSE-SLE-Module-Server-Applications-15-SP4-2022-2295,openSUSE-SLE-15.4-2022-2295
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for 389-ds",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for 389-ds fixes the following issues:\n\n- CVE-2021-4091: Fixed double free in psearch (bsc#1195324). \n- CVE-2022-1949: Fixed full access control bypass with simple crafted query (bsc#1199889).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-2295,SUSE-SLE-Module-Server-Applications-15-SP4-2022-2295,openSUSE-SLE-15.4-2022-2295",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_2295-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:2295-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20222295-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:2295-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-July/011430.html"
},
{
"category": "self",
"summary": "SUSE Bug 1195324",
"url": "https://bugzilla.suse.com/1195324"
},
{
"category": "self",
"summary": "SUSE Bug 1199889",
"url": "https://bugzilla.suse.com/1199889"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-4091 page",
"url": "https://www.suse.com/security/cve/CVE-2021-4091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1949 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1949/"
}
],
"title": "Security update for 389-ds",
"tracking": {
"current_release_date": "2022-07-06T11:34:50Z",
"generator": {
"date": "2022-07-06T11:34:50Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:2295-1",
"initial_release_date": "2022-07-06T11:34:50Z",
"revision_history": [
{
"date": "2022-07-06T11:34:50Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"product": {
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"product_id": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"product": {
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"product_id": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"product": {
"name": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"product_id": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"product": {
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"product_id": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"product": {
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"product_id": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"product": {
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"product_id": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"product": {
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"product_id": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"product": {
"name": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"product_id": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"product": {
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"product_id": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"product": {
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"product_id": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"product": {
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"product_id": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x"
}
},
{
"category": "product_version",
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"product": {
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"product_id": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"product": {
"name": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"product_id": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x"
}
},
{
"category": "product_version",
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"product": {
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"product_id": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x"
}
},
{
"category": "product_version",
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"product": {
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"product_id": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"product": {
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"product_id": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"product": {
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"product_id": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"product": {
"name": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"product_id": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"product": {
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"product_id": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"product": {
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"product_id": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15:sp4"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.4",
"product": {
"name": "openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64"
},
"product_reference": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le"
},
"product_reference": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x"
},
"product_reference": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
},
"product_reference": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64"
},
"product_reference": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le"
},
"product_reference": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x"
},
"product_reference": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
},
"product_reference": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64"
},
"product_reference": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le"
},
"product_reference": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x"
},
"product_reference": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
},
"product_reference": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64"
},
"product_reference": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le"
},
"product_reference": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x"
},
"product_reference": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
},
"product_reference": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64"
},
"product_reference": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le"
},
"product_reference": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x"
},
"product_reference": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
},
"product_reference": "389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64"
},
"product_reference": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le"
},
"product_reference": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x"
},
"product_reference": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
},
"product_reference": "389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64"
},
"product_reference": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le"
},
"product_reference": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x"
},
"product_reference": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
},
"product_reference": "389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64"
},
"product_reference": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le"
},
"product_reference": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x"
},
"product_reference": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
},
"product_reference": "lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64"
},
"product_reference": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le"
},
"product_reference": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x"
},
"product_reference": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
},
"product_reference": "libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-4091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-4091"
}
],
"notes": [
{
"category": "general",
"text": "A double-free was found in the way 389-ds-base handles virtual attributes context in persistent searches. An attacker could send a series of search requests, forcing the server to behave unexpectedly, and crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-4091",
"url": "https://www.suse.com/security/cve/CVE-2021-4091"
},
{
"category": "external",
"summary": "SUSE Bug 1195324 for CVE-2021-4091",
"url": "https://bugzilla.suse.com/1195324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-07-06T11:34:50Z",
"details": "moderate"
}
],
"title": "CVE-2021-4091"
},
{
"cve": "CVE-2022-1949",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1949"
}
],
"notes": [
{
"category": "general",
"text": "An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1949",
"url": "https://www.suse.com/security/cve/CVE-2022-1949"
},
{
"category": "external",
"summary": "SUSE Bug 1199889 for CVE-2022-1949",
"url": "https://bugzilla.suse.com/1199889"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x",
"openSUSE Leap 15.4:libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-07-06T11:34:50Z",
"details": "critical"
}
],
"title": "CVE-2022-1949"
}
]
}
SUSE-SU-2022:2163-1
Vulnerability from csaf_suse - Published: 2022-06-23 12:34 - Updated: 2022-06-23 12:34Summary
Security update for 389-ds
Notes
Title of the patch
Security update for 389-ds
Description of the patch
This update for 389-ds fixes the following issues:
- CVE-2022-1949: Fixed full access control bypass with simple crafted query (bsc#1199889).
- CVE-2022-0918: Fixed denial of service issue via crafted messages (bsc#1197275).
- CVE-2022-0996: Fixed mishandling of password expiry (bsc#1197345).
- CVE-2021-4091: Fixed double free in psearch (bsc#1195324).
- CVE-2021-3652: Fixed disabled accounts may be able to bind with crypt passwords (bsc#1188455).
Patchnames
SUSE-2022-2163,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-2163,SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-2163,SUSE-SLE-Product-SLES-15-SP1-BCL-2022-2163,SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-2163,SUSE-SLE-Product-SLES_SAP-15-SP1-2022-2163,SUSE-Storage-6-2022-2163
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for 389-ds",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for 389-ds fixes the following issues:\n\n- CVE-2022-1949: Fixed full access control bypass with simple crafted query (bsc#1199889).\n- CVE-2022-0918: Fixed denial of service issue via crafted messages (bsc#1197275).\n- CVE-2022-0996: Fixed mishandling of password expiry (bsc#1197345).\n- CVE-2021-4091: Fixed double free in psearch (bsc#1195324).\n- CVE-2021-3652: Fixed disabled accounts may be able to bind with crypt passwords (bsc#1188455). \n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-2163,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-2163,SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-2163,SUSE-SLE-Product-SLES-15-SP1-BCL-2022-2163,SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-2163,SUSE-SLE-Product-SLES_SAP-15-SP1-2022-2163,SUSE-Storage-6-2022-2163",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_2163-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:2163-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20222163-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:2163-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-June/011338.html"
},
{
"category": "self",
"summary": "SUSE Bug 1188455",
"url": "https://bugzilla.suse.com/1188455"
},
{
"category": "self",
"summary": "SUSE Bug 1195324",
"url": "https://bugzilla.suse.com/1195324"
},
{
"category": "self",
"summary": "SUSE Bug 1197275",
"url": "https://bugzilla.suse.com/1197275"
},
{
"category": "self",
"summary": "SUSE Bug 1197345",
"url": "https://bugzilla.suse.com/1197345"
},
{
"category": "self",
"summary": "SUSE Bug 1199889",
"url": "https://bugzilla.suse.com/1199889"
},
{
"category": "self",
"summary": "SUSE Bug 1200175",
"url": "https://bugzilla.suse.com/1200175"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3652 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3652/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-4091 page",
"url": "https://www.suse.com/security/cve/CVE-2021-4091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0918 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0918/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0996 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1949 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1949/"
}
],
"title": "Security update for 389-ds",
"tracking": {
"current_release_date": "2022-06-23T12:34:06Z",
"generator": {
"date": "2022-06-23T12:34:06Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:2163-1",
"initial_release_date": "2022-06-23T12:34:06Z",
"revision_history": [
{
"date": "2022-06-23T12:34:06Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"product": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"product_id": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"product": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"product_id": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"product": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"product_id": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
}
},
{
"category": "product_version",
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"product": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"product_id": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"product": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"product_id": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"product": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"product_id": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"product": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"product_id": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"product": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"product_id": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le"
}
},
{
"category": "product_version",
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"product": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"product_id": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"product": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"product_id": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"product": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"product_id": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"product": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"product_id": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"product": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"product_id": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x"
}
},
{
"category": "product_version",
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"product": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"product_id": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"product": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"product_id": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"product": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"product_id": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"product": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"product_id": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"product": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"product_id": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
}
},
{
"category": "product_version",
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"product": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"product_id": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"product": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"product_id": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_bcl:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 6",
"product": {
"name": "SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le"
},
"product_reference": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x"
},
"product_reference": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le"
},
"product_reference": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x"
},
"product_reference": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le"
},
"product_reference": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x"
},
"product_reference": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le"
},
"product_reference": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x"
},
"product_reference": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le"
},
"product_reference": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x"
},
"product_reference": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le"
},
"product_reference": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le"
},
"product_reference": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le"
},
"product_reference": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le"
},
"product_reference": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le"
},
"product_reference": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64"
},
"product_reference": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-3652",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3652"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in 389-ds-base. If an asterisk is imported as password hashes, either accidentally or maliciously, then instead of being inactive, any password will successfully match during authentication. This flaw allows an attacker to successfully authenticate as a user whose password was disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3652",
"url": "https://www.suse.com/security/cve/CVE-2021-3652"
},
{
"category": "external",
"summary": "SUSE Bug 1188455 for CVE-2021-3652",
"url": "https://bugzilla.suse.com/1188455"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-23T12:34:06Z",
"details": "moderate"
}
],
"title": "CVE-2021-3652"
},
{
"cve": "CVE-2021-4091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-4091"
}
],
"notes": [
{
"category": "general",
"text": "A double-free was found in the way 389-ds-base handles virtual attributes context in persistent searches. An attacker could send a series of search requests, forcing the server to behave unexpectedly, and crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-4091",
"url": "https://www.suse.com/security/cve/CVE-2021-4091"
},
{
"category": "external",
"summary": "SUSE Bug 1195324 for CVE-2021-4091",
"url": "https://bugzilla.suse.com/1195324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-23T12:34:06Z",
"details": "moderate"
}
],
"title": "CVE-2021-4091"
},
{
"cve": "CVE-2022-0918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0918"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was discovered in the 389 Directory Server that allows an unauthenticated attacker with network access to the LDAP port to cause a denial of service. The denial of service is triggered by a single message sent over a TCP connection, no bind or other authentication is required. The message triggers a segmentation fault that results in slapd crashing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0918",
"url": "https://www.suse.com/security/cve/CVE-2022-0918"
},
{
"category": "external",
"summary": "SUSE Bug 1197275 for CVE-2022-0918",
"url": "https://bugzilla.suse.com/1197275"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-23T12:34:06Z",
"details": "important"
}
],
"title": "CVE-2022-0918"
},
{
"cve": "CVE-2022-0996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0996"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0996",
"url": "https://www.suse.com/security/cve/CVE-2022-0996"
},
{
"category": "external",
"summary": "SUSE Bug 1197345 for CVE-2022-0996",
"url": "https://bugzilla.suse.com/1197345"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-23T12:34:06Z",
"details": "moderate"
}
],
"title": "CVE-2022-0996"
},
{
"cve": "CVE-2022-1949",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1949"
}
],
"notes": [
{
"category": "general",
"text": "An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1949",
"url": "https://www.suse.com/security/cve/CVE-2022-1949"
},
{
"category": "external",
"summary": "SUSE Bug 1199889 for CVE-2022-1949",
"url": "https://bugzilla.suse.com/1199889"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Enterprise Storage 6:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-devel-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:389-ds-snmp-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:lib389-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libsvrcore0-1.4.2.16~git68.efa843752-150100.7.34.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-23T12:34:06Z",
"details": "critical"
}
],
"title": "CVE-2022-1949"
}
]
}
SUSE-SU-2022:2081-1
Vulnerability from csaf_suse - Published: 2022-06-14 19:04 - Updated: 2022-06-14 19:04Summary
Security update for 389-ds
Notes
Title of the patch
Security update for 389-ds
Description of the patch
This update for 389-ds fixes the following issues:
- CVE-2021-4091: Fixed double free in psearch (bsc#1195324).
- CVE-2022-1949: Fixed full access control bypass with simple crafted query (bsc#1199889).
Patchnames
SUSE-2022-2081,SUSE-SLE-Module-Server-Applications-15-SP3-2022-2081,openSUSE-SLE-15.3-2022-2081
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for 389-ds",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for 389-ds fixes the following issues:\n\n- CVE-2021-4091: Fixed double free in psearch (bsc#1195324).\n- CVE-2022-1949: Fixed full access control bypass with simple crafted query (bsc#1199889).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-2081,SUSE-SLE-Module-Server-Applications-15-SP3-2022-2081,openSUSE-SLE-15.3-2022-2081",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_2081-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:2081-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20222081-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:2081-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-June/011288.html"
},
{
"category": "self",
"summary": "SUSE Bug 1195324",
"url": "https://bugzilla.suse.com/1195324"
},
{
"category": "self",
"summary": "SUSE Bug 1199889",
"url": "https://bugzilla.suse.com/1199889"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-4091 page",
"url": "https://www.suse.com/security/cve/CVE-2021-4091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1949 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1949/"
}
],
"title": "Security update for 389-ds",
"tracking": {
"current_release_date": "2022-06-14T19:04:14Z",
"generator": {
"date": "2022-06-14T19:04:14Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:2081-1",
"initial_release_date": "2022-06-14T19:04:14Z",
"revision_history": [
{
"date": "2022-06-14T19:04:14Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"product": {
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"product_id": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"product": {
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"product_id": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"product": {
"name": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"product_id": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64"
}
},
{
"category": "product_version",
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"product": {
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"product_id": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"product": {
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"product_id": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"product": {
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"product_id": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"product": {
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"product_id": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"product": {
"name": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"product_id": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le"
}
},
{
"category": "product_version",
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"product": {
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"product_id": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"product": {
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"product_id": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"product": {
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"product_id": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"product": {
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"product_id": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"product": {
"name": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"product_id": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x"
}
},
{
"category": "product_version",
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"product": {
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"product_id": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"product": {
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"product_id": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"product": {
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"product_id": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"product": {
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"product_id": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"product": {
"name": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"product_id": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
}
},
{
"category": "product_version",
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"product": {
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"product_id": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"product": {
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"product_id": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15:sp3"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64"
},
"product_reference": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le"
},
"product_reference": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x"
},
"product_reference": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
},
"product_reference": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64"
},
"product_reference": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le"
},
"product_reference": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x"
},
"product_reference": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64"
},
"product_reference": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le"
},
"product_reference": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x"
},
"product_reference": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
},
"product_reference": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64"
},
"product_reference": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le"
},
"product_reference": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x"
},
"product_reference": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64"
},
"product_reference": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le"
},
"product_reference": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x"
},
"product_reference": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
},
"product_reference": "389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64"
},
"product_reference": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le"
},
"product_reference": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x"
},
"product_reference": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64"
},
"product_reference": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le"
},
"product_reference": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x"
},
"product_reference": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
},
"product_reference": "389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64"
},
"product_reference": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le"
},
"product_reference": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x"
},
"product_reference": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
},
"product_reference": "lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64"
},
"product_reference": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le"
},
"product_reference": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x"
},
"product_reference": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-4091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-4091"
}
],
"notes": [
{
"category": "general",
"text": "A double-free was found in the way 389-ds-base handles virtual attributes context in persistent searches. An attacker could send a series of search requests, forcing the server to behave unexpectedly, and crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-4091",
"url": "https://www.suse.com/security/cve/CVE-2021-4091"
},
{
"category": "external",
"summary": "SUSE Bug 1195324 for CVE-2021-4091",
"url": "https://bugzilla.suse.com/1195324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-14T19:04:14Z",
"details": "moderate"
}
],
"title": "CVE-2021-4091"
},
{
"cve": "CVE-2022-1949",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1949"
}
],
"notes": [
{
"category": "general",
"text": "An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1949",
"url": "https://www.suse.com/security/cve/CVE-2022-1949"
},
{
"category": "external",
"summary": "SUSE Bug 1199889 for CVE-2022-1949",
"url": "https://bugzilla.suse.com/1199889"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x",
"openSUSE Leap 15.3:libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-14T19:04:14Z",
"details": "critical"
}
],
"title": "CVE-2022-1949"
}
]
}
SUSE-SU-2022:2105-1
Vulnerability from csaf_suse - Published: 2022-06-16 13:22 - Updated: 2022-06-16 13:22Summary
Security update for 389-ds
Notes
Title of the patch
Security update for 389-ds
Description of the patch
This update for 389-ds fixes the following issues:
- CVE-2021-4091: Fixed double free in psearch (bsc#1195324).
- CVE-2022-1949: Fixed full access control bypass with simple crafted query (bsc#1199889).
Patchnames
SUSE-2022-2105,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-2105,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-2105,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-2105,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-2105,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-2105,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-2105,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-2105,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-2105,SUSE-Storage-7-2022-2105
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for 389-ds",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for 389-ds fixes the following issues:\n\n- CVE-2021-4091: Fixed double free in psearch (bsc#1195324).\n- CVE-2022-1949: Fixed full access control bypass with simple crafted query (bsc#1199889).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-2105,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-2105,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-2105,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-2105,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-2105,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-2105,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-2105,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-2105,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-2105,SUSE-Storage-7-2022-2105",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_2105-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:2105-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20222105-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:2105-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-June/011303.html"
},
{
"category": "self",
"summary": "SUSE Bug 1195324",
"url": "https://bugzilla.suse.com/1195324"
},
{
"category": "self",
"summary": "SUSE Bug 1199889",
"url": "https://bugzilla.suse.com/1199889"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-4091 page",
"url": "https://www.suse.com/security/cve/CVE-2021-4091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1949 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1949/"
}
],
"title": "Security update for 389-ds",
"tracking": {
"current_release_date": "2022-06-16T13:22:49Z",
"generator": {
"date": "2022-06-16T13:22:49Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:2105-1",
"initial_release_date": "2022-06-16T13:22:49Z",
"revision_history": [
{
"date": "2022-06-16T13:22:49Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"product": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"product_id": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"product": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"product_id": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"product": {
"name": "389-ds-snmp-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"product_id": "389-ds-snmp-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
}
},
{
"category": "product_version",
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"product": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"product_id": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"product": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"product_id": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"product": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"product_id": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"product": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"product_id": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"product": {
"name": "389-ds-snmp-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"product_id": "389-ds-snmp-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
}
},
{
"category": "product_version",
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"product": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"product_id": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"product": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"product_id": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"product": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"product_id": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"product": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"product_id": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"product": {
"name": "389-ds-snmp-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"product_id": "389-ds-snmp-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x"
}
},
{
"category": "product_version",
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"product": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"product_id": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"product": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"product_id": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"product": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"product_id": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"product": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"product_id": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"product": {
"name": "389-ds-snmp-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"product_id": "389-ds-snmp-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
}
},
{
"category": "product_version",
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"product": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"product_id": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"product": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"product_id": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP2-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP2-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_bcl:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Proxy 4.1",
"product": {
"name": "SUSE Manager Proxy 4.1",
"product_id": "SUSE Manager Proxy 4.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-proxy:4.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Retail Branch Server 4.1",
"product": {
"name": "SUSE Manager Retail Branch Server 4.1",
"product_id": "SUSE Manager Retail Branch Server 4.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Server 4.1",
"product": {
"name": "SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-server:4.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7",
"product": {
"name": "SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Manager Proxy 4.1",
"product_id": "SUSE Manager Proxy 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Manager Proxy 4.1",
"product_id": "SUSE Manager Proxy 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Manager Proxy 4.1",
"product_id": "SUSE Manager Proxy 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Manager Proxy 4.1",
"product_id": "SUSE Manager Proxy 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
"product_id": "SUSE Manager Retail Branch Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
"product_id": "SUSE Manager Retail Branch Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
"product_id": "SUSE Manager Retail Branch Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
"product_id": "SUSE Manager Retail Branch Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-4091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-4091"
}
],
"notes": [
{
"category": "general",
"text": "A double-free was found in the way 389-ds-base handles virtual attributes context in persistent searches. An attacker could send a series of search requests, forcing the server to behave unexpectedly, and crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-4091",
"url": "https://www.suse.com/security/cve/CVE-2021-4091"
},
{
"category": "external",
"summary": "SUSE Bug 1195324 for CVE-2021-4091",
"url": "https://bugzilla.suse.com/1195324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-16T13:22:49Z",
"details": "moderate"
}
],
"title": "CVE-2021-4091"
},
{
"cve": "CVE-2022-1949",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1949"
}
],
"notes": [
{
"category": "general",
"text": "An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1949",
"url": "https://www.suse.com/security/cve/CVE-2022-1949"
},
{
"category": "external",
"summary": "SUSE Bug 1199889 for CVE-2022-1949",
"url": "https://bugzilla.suse.com/1199889"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Enterprise Storage 7:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Enterprise Storage 7:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Proxy 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:389-ds-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:389-ds-devel-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:lib389-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.ppc64le",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.s390x",
"SUSE Manager Server 4.1:libsvrcore0-1.4.3.30~git2.ca761af4b-150200.3.29.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-16T13:22:49Z",
"details": "critical"
}
],
"title": "CVE-2022-1949"
}
]
}
SUSE-SU-2022:2109-1
Vulnerability from csaf_suse - Published: 2022-06-16 13:26 - Updated: 2022-06-16 13:26Summary
Security update for 389-ds
Notes
Title of the patch
Security update for 389-ds
Description of the patch
This update for 389-ds fixes the following issues:
- CVE-2021-3652: Fixed disabled accounts may be able to bind with crypt passwords (bsc#1188455).
- CVE-2022-1949: Fixed full access control bypass with simple crafted query (bsc#1199889).
- CVE-2021-4091: Fixed double free in psearch (bsc#1195324).
Patchnames
SUSE-2022-2109,SUSE-SLE-Product-HPC-15-2022-2109,SUSE-SLE-Product-SLES-15-2022-2109,SUSE-SLE-Product-SLES_SAP-15-2022-2109
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for 389-ds",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for 389-ds fixes the following issues:\n\t \n- CVE-2021-3652: Fixed disabled accounts may be able to bind with crypt passwords (bsc#1188455). \n- CVE-2022-1949: Fixed full access control bypass with simple crafted query (bsc#1199889).\n- CVE-2021-4091: Fixed double free in psearch (bsc#1195324).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-2109,SUSE-SLE-Product-HPC-15-2022-2109,SUSE-SLE-Product-SLES-15-2022-2109,SUSE-SLE-Product-SLES_SAP-15-2022-2109",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_2109-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:2109-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20222109-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:2109-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-June/011305.html"
},
{
"category": "self",
"summary": "SUSE Bug 1188455",
"url": "https://bugzilla.suse.com/1188455"
},
{
"category": "self",
"summary": "SUSE Bug 1195324",
"url": "https://bugzilla.suse.com/1195324"
},
{
"category": "self",
"summary": "SUSE Bug 1199889",
"url": "https://bugzilla.suse.com/1199889"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3652 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3652/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-4091 page",
"url": "https://www.suse.com/security/cve/CVE-2021-4091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1949 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1949/"
}
],
"title": "Security update for 389-ds",
"tracking": {
"current_release_date": "2022-06-16T13:26:57Z",
"generator": {
"date": "2022-06-16T13:26:57Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:2109-1",
"initial_release_date": "2022-06-16T13:26:57Z",
"revision_history": [
{
"date": "2022-06-16T13:26:57Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"product": {
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"product_id": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"product": {
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"product_id": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"product": {
"name": "389-ds-snmp-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"product_id": "389-ds-snmp-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"product": {
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"product_id": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libsvrcore0-64bit-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64_ilp32",
"product": {
"name": "libsvrcore0-64bit-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64_ilp32",
"product_id": "libsvrcore0-64bit-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"product": {
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"product_id": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"product": {
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"product_id": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"product": {
"name": "389-ds-snmp-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"product_id": "389-ds-snmp-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"product": {
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"product_id": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"product": {
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"product_id": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"product": {
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"product_id": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"product": {
"name": "389-ds-snmp-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"product_id": "389-ds-snmp-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"product": {
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"product_id": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"product": {
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"product_id": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"product": {
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"product_id": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"product": {
"name": "389-ds-snmp-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"product_id": "389-ds-snmp-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"product": {
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"product_id": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64"
},
"product_reference": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
},
"product_reference": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64"
},
"product_reference": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64"
},
"product_reference": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64"
},
"product_reference": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
},
"product_reference": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64"
},
"product_reference": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64"
},
"product_reference": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64"
},
"product_reference": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le"
},
"product_reference": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x"
},
"product_reference": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
},
"product_reference": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64"
},
"product_reference": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le"
},
"product_reference": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x"
},
"product_reference": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64"
},
"product_reference": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le"
},
"product_reference": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x"
},
"product_reference": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le"
},
"product_reference": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
},
"product_reference": "389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le"
},
"product_reference": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
},
"product_reference": "389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le"
},
"product_reference": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
},
"product_reference": "libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-3652",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3652"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in 389-ds-base. If an asterisk is imported as password hashes, either accidentally or maliciously, then instead of being inactive, any password will successfully match during authentication. This flaw allows an attacker to successfully authenticate as a user whose password was disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3652",
"url": "https://www.suse.com/security/cve/CVE-2021-3652"
},
{
"category": "external",
"summary": "SUSE Bug 1188455 for CVE-2021-3652",
"url": "https://bugzilla.suse.com/1188455"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-16T13:26:57Z",
"details": "moderate"
}
],
"title": "CVE-2021-3652"
},
{
"cve": "CVE-2021-4091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-4091"
}
],
"notes": [
{
"category": "general",
"text": "A double-free was found in the way 389-ds-base handles virtual attributes context in persistent searches. An attacker could send a series of search requests, forcing the server to behave unexpectedly, and crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-4091",
"url": "https://www.suse.com/security/cve/CVE-2021-4091"
},
{
"category": "external",
"summary": "SUSE Bug 1195324 for CVE-2021-4091",
"url": "https://bugzilla.suse.com/1195324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-16T13:26:57Z",
"details": "moderate"
}
],
"title": "CVE-2021-4091"
},
{
"cve": "CVE-2022-1949",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1949"
}
],
"notes": [
{
"category": "general",
"text": "An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1949",
"url": "https://www.suse.com/security/cve/CVE-2022-1949"
},
{
"category": "external",
"summary": "SUSE Bug 1199889 for CVE-2022-1949",
"url": "https://bugzilla.suse.com/1199889"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:389-ds-devel-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libsvrcore0-1.4.0.31~git15.8b9843b0b-150000.4.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-16T13:26:57Z",
"details": "critical"
}
],
"title": "CVE-2022-1949"
}
]
}
CVE-2022-1949
Vulnerability from fstec - Published: 22.02.2022
VLAI Severity ?
Title
Уязвимость фильтра поиска (ldbm_search.c) сервера службы каталогов 389 Directory Server, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
Description
Уязвимость фильтра поиска (ldbm_search.c) сервера службы каталогов 389 Directory Server связана с недостатками разграничения доступа. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, получить несанкционированный доступ к защищаемой информации
Severity ?
Vendor
Red Hat Inc., Novell Inc., ООО «Ред Софт», ООО «РусБИТех-Астра», Fedora Project, АО «НТЦ ИТ РОСА»
Software Name
Red Hat Enterprise Linux, SUSE Linux Enterprise Server for SAP Applications, SUSE Enterprise Storage, SUSE Linux Enterprise High Performance Computing, Suse Linux Enterprise Server, openSUSE Tumbleweed, SUSE CaaS Platform, OpenSUSE Leap, SUSE Linux Enterprise Module for Server Applications, РЕД ОС (запись в едином реестре российских программ №3751), Astra Linux Special Edition (запись в едином реестре российских программ №369), SUSE Manager Proxy, SUSE Manager Server, SUSE Manager Retail Branch Server, Red Hat Directory Server, 389 Directory Server, ROSA Virtualization (запись в едином реестре российских программ №5091), РОСА ХРОМ (запись в едином реестре российских программ №1607)
Software Version
8 (Red Hat Enterprise Linux), 15 (SUSE Linux Enterprise Server for SAP Applications), 15 SP1 (SUSE Linux Enterprise Server for SAP Applications), 6 (SUSE Enterprise Storage), 15-ESPOS (SUSE Linux Enterprise High Performance Computing), 15-LTSS (SUSE Linux Enterprise High Performance Computing), 15-LTSS (Suse Linux Enterprise Server), - (openSUSE Tumbleweed), 4.0 (SUSE CaaS Platform), 15 SP1-BCL (Suse Linux Enterprise Server), 15 SP1-LTSS (Suse Linux Enterprise Server), 15 SP1-LTSS (SUSE Linux Enterprise High Performance Computing), 15 SP1-ESPOS (SUSE Linux Enterprise High Performance Computing), 15.3 (OpenSUSE Leap), 15 SP3 (SUSE Linux Enterprise Module for Server Applications), 7.3 (РЕД ОС), 1.7 (Astra Linux Special Edition), 15.4 (OpenSUSE Leap), 15 SP3 (SUSE Linux Enterprise High Performance Computing), 15 SP3 (Suse Linux Enterprise Server), 15 SP3 (SUSE Linux Enterprise Server for SAP Applications), 4.2 (SUSE Manager Proxy), 4.2 (SUSE Manager Server), 7 (SUSE Enterprise Storage), 15 SP2 (SUSE Linux Enterprise Server for SAP Applications), 4.1 (SUSE Manager Server), 4.1 (SUSE Manager Proxy), 15 SP2-ESPOS (SUSE Linux Enterprise High Performance Computing), 15 SP2-LTSS (SUSE Linux Enterprise High Performance Computing), 4.1 (SUSE Manager Retail Branch Server), 15 SP4 (Suse Linux Enterprise Server), 15 SP2-BCL (Suse Linux Enterprise Server), 15 SP4 (SUSE Linux Enterprise Server for SAP Applications), 4.2 (SUSE Manager Retail Branch Server), 9 (Red Hat Enterprise Linux), 15 SP2-LTSS (Suse Linux Enterprise Server), 4.3 (SUSE Manager Retail Branch Server), 4.3 (SUSE Manager Proxy), 4.3 (SUSE Manager Server), 15 SP4 (SUSE Linux Enterprise High Performance Computing), 12 (Red Hat Directory Server), 11 (Red Hat Directory Server), от 1.3.0.0 до 2.0.0 включительно (389 Directory Server), 15 SP4 (SUSE Linux Enterprise Module for Server Applications), 7.1 (SUSE Enterprise Storage), 4.7 (Astra Linux Special Edition), 2.1 (ROSA Virtualization), 12.4 (РОСА ХРОМ)
Possible Mitigations
Использование рекомендаций:
Для программных продуктов Red Hat Inc.:
https://access.redhat.com/security/cve/cve-2022-1949
Для 389 Directory Server:
https://github.com/389ds/389-ds-base/commit/26a994544d77c088cc548ce408fe7b3c33e37f80
https://github.com/Firstyear/389-ds-base/commit/db6ee917bfb17274be238249fdbb5d800d97ec31
https://github.com/389ds/389-ds-base/issues/5170
Для программных продуктов Novell Inc.:
https://www.suse.com/security/cve/CVE-2022-1949.html
Для ОС Astra Linux Special Edition 1.7:
использование рекомендаций производителя: https://wiki.astralinux.ru/astra-linux-se17-bulletin-2023-0426SE17
Для Astra Linux Special Edition 4.7 для архитектуры ARM:
https://wiki.astralinux.ru/astra-linux-se47-bulletin-2023-0727SE47
Для операционной системы РОСА ХРОМ: https://abf.rosalinux.ru/advisories/ROSA-SA-2023-2237
Для РедОС: http://repo.red-soft.ru/redos/7.3c/x86_64/updates/
Для системы управления средой виртуализации «ROSA Virtualization»: https://abf.rosa.ru/advisories/ROSA-SA-2024-2404
Reference
https://github.com/389ds/389-ds-base/issues/5170
https://access.redhat.com/security/cve/cve-2022-1949
https://nvd.nist.gov/vuln/detail/CVE-2022-1949
https://bugzilla.redhat.com/show_bug.cgi?id=2091781
https://github.com/389ds/389-ds-base/commit/26a994544d77c088cc548ce408fe7b3c33e37f80
https://github.com/Firstyear/389-ds-base/commit/db6ee917bfb17274be238249fdbb5d800d97ec31
https://www.suse.com/security/cve/CVE-2022-1949.html
https://wiki.astralinux.ru/astra-linux-se17-bulletin-2023-0426SE17
https://wiki.astralinux.ru/astra-linux-se47-bulletin-2023-0727SE47
https://abf.rosalinux.ru/advisories/ROSA-SA-2023-2237
http://repo.red-soft.ru/redos/7.3c/x86_64/updates/
https://abf.rosa.ru/advisories/ROSA-SA-2024-2404
CWE
CWE-284, CWE-863
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Red Hat Inc., Novell Inc., \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb, \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb, Fedora Project, \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "8 (Red Hat Enterprise Linux), 15 (SUSE Linux Enterprise Server for SAP Applications), 15 SP1 (SUSE Linux Enterprise Server for SAP Applications), 6 (SUSE Enterprise Storage), 15-ESPOS (SUSE Linux Enterprise High Performance Computing), 15-LTSS (SUSE Linux Enterprise High Performance Computing), 15-LTSS (Suse Linux Enterprise Server), - (openSUSE Tumbleweed), 4.0 (SUSE CaaS Platform), 15 SP1-BCL (Suse Linux Enterprise Server), 15 SP1-LTSS (Suse Linux Enterprise Server), 15 SP1-LTSS (SUSE Linux Enterprise High Performance Computing), 15 SP1-ESPOS (SUSE Linux Enterprise High Performance Computing), 15.3 (OpenSUSE Leap), 15 SP3 (SUSE Linux Enterprise Module for Server Applications), 7.3 (\u0420\u0415\u0414 \u041e\u0421), 1.7 (Astra Linux Special Edition), 15.4 (OpenSUSE Leap), 15 SP3 (SUSE Linux Enterprise High Performance Computing), 15 SP3 (Suse Linux Enterprise Server), 15 SP3 (SUSE Linux Enterprise Server for SAP Applications), 4.2 (SUSE Manager Proxy), 4.2 (SUSE Manager Server), 7 (SUSE Enterprise Storage), 15 SP2 (SUSE Linux Enterprise Server for SAP Applications), 4.1 (SUSE Manager Server), 4.1 (SUSE Manager Proxy), 15 SP2-ESPOS (SUSE Linux Enterprise High Performance Computing), 15 SP2-LTSS (SUSE Linux Enterprise High Performance Computing), 4.1 (SUSE Manager Retail Branch Server), 15 SP4 (Suse Linux Enterprise Server), 15 SP2-BCL (Suse Linux Enterprise Server), 15 SP4 (SUSE Linux Enterprise Server for SAP Applications), 4.2 (SUSE Manager Retail Branch Server), 9 (Red Hat Enterprise Linux), 15 SP2-LTSS (Suse Linux Enterprise Server), 4.3 (SUSE Manager Retail Branch Server), 4.3 (SUSE Manager Proxy), 4.3 (SUSE Manager Server), 15 SP4 (SUSE Linux Enterprise High Performance Computing), 12 (Red Hat Directory Server), 11 (Red Hat Directory Server), \u043e\u0442 1.3.0.0 \u0434\u043e 2.0.0 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (389 Directory Server), 15 SP4 (SUSE Linux Enterprise Module for Server Applications), 7.1 (SUSE Enterprise Storage), 4.7 (Astra Linux Special Edition), 2.1 (ROSA Virtualization), 12.4 (\u0420\u041e\u0421\u0410 \u0425\u0420\u041e\u041c)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Red Hat Inc.:\nhttps://access.redhat.com/security/cve/cve-2022-1949\n\n\u0414\u043b\u044f 389 Directory Server:\nhttps://github.com/389ds/389-ds-base/commit/26a994544d77c088cc548ce408fe7b3c33e37f80\nhttps://github.com/Firstyear/389-ds-base/commit/db6ee917bfb17274be238249fdbb5d800d97ec31\nhttps://github.com/389ds/389-ds-base/issues/5170\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Novell Inc.:\nhttps://www.suse.com/security/cve/CVE-2022-1949.html\n\n\u0414\u043b\u044f \u041e\u0421 Astra Linux Special Edition 1.7:\n\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se17-bulletin-2023-0426SE17\n\n\u0414\u043b\u044f Astra Linux Special Edition 4.7 \u0434\u043b\u044f \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u044b ARM:\nhttps://wiki.astralinux.ru/astra-linux-se47-bulletin-2023-0727SE47\n\n\u0414\u043b\u044f \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0420\u041e\u0421\u0410 \u0425\u0420\u041e\u041c: https://abf.rosalinux.ru/advisories/ROSA-SA-2023-2237\n\u0414\u043b\u044f \u0420\u0435\u0434\u041e\u0421: http://repo.red-soft.ru/redos/7.3c/x86_64/updates/\n\n\u0414\u043b\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u0440\u0435\u0434\u043e\u0439 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u00abROSA Virtualization\u00bb: https://abf.rosa.ru/advisories/ROSA-SA-2024-2404",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "22.02.2022",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "05.03.2025",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "18.07.2022",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2022-04434",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2022-1949",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u044b",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Red Hat Enterprise Linux, SUSE Linux Enterprise Server for SAP Applications, SUSE Enterprise Storage, SUSE Linux Enterprise High Performance Computing, Suse Linux Enterprise Server, openSUSE Tumbleweed, SUSE CaaS Platform, OpenSUSE Leap, SUSE Linux Enterprise Module for Server Applications, \u0420\u0415\u0414 \u041e\u0421 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), Astra Linux Special Edition (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), SUSE Manager Proxy, SUSE Manager Server, SUSE Manager Retail Branch Server, Red Hat Directory Server, 389 Directory Server, ROSA Virtualization (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165091), \u0420\u041e\u0421\u0410 \u0425\u0420\u041e\u041c (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21161607)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Red Hat Inc. Red Hat Enterprise Linux 8 , Novell Inc. SUSE Linux Enterprise Server for SAP Applications 15 , Novell Inc. SUSE Linux Enterprise Server for SAP Applications 15 SP1 , Novell Inc. Suse Linux Enterprise Server 15-LTSS , Novell Inc. Suse Linux Enterprise Server 15 SP1-BCL , Novell Inc. Suse Linux Enterprise Server 15 SP1-LTSS , Novell Inc. OpenSUSE Leap 15.3 , \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb \u0420\u0415\u0414 \u041e\u0421 7.3 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 1.7 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), Novell Inc. OpenSUSE Leap 15.4 , Novell Inc. Suse Linux Enterprise Server 15 SP3 , Novell Inc. SUSE Linux Enterprise Server for SAP Applications 15 SP3 , Novell Inc. SUSE Linux Enterprise Server for SAP Applications 15 SP2 , Novell Inc. Suse Linux Enterprise Server 15 SP4 , Novell Inc. Suse Linux Enterprise Server 15 SP2-BCL , Novell Inc. SUSE Linux Enterprise Server for SAP Applications 15 SP4 , Red Hat Inc. Red Hat Enterprise Linux 9 , Novell Inc. Suse Linux Enterprise Server 15 SP2-LTSS , Red Hat Inc. Red Hat Directory Server 12 , Red Hat Inc. Red Hat Directory Server 11 , \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 4.7 ARM (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb ROSA Virtualization 2.1 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165091), \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb \u0420\u041e\u0421\u0410 \u0425\u0420\u041e\u041c 12.4 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21161607)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0438\u043b\u044c\u0442\u0440\u0430 \u043f\u043e\u0438\u0441\u043a\u0430 (ldbm_search.c) \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0441\u043b\u0443\u0436\u0431\u044b \u043a\u0430\u0442\u0430\u043b\u043e\u0433\u043e\u0432 389 Directory Server, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u0434\u043e\u0441\u0442\u0443\u043f\u0430 (CWE-284), \u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u0430\u044f \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u044f (CWE-863)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0438\u043b\u044c\u0442\u0440\u0430 \u043f\u043e\u0438\u0441\u043a\u0430 (ldbm_search.c) \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0441\u043b\u0443\u0436\u0431\u044b \u043a\u0430\u0442\u0430\u043b\u043e\u0433\u043e\u0432 389 Directory Server \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c\u0438 \u0440\u0430\u0437\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041d\u0430\u0440\u0443\u0448\u0435\u043d\u0438\u0435 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://github.com/389ds/389-ds-base/issues/5170\nhttps://access.redhat.com/security/cve/cve-2022-1949\nhttps://nvd.nist.gov/vuln/detail/CVE-2022-1949\nhttps://bugzilla.redhat.com/show_bug.cgi?id=2091781\nhttps://github.com/389ds/389-ds-base/commit/26a994544d77c088cc548ce408fe7b3c33e37f80\nhttps://github.com/Firstyear/389-ds-base/commit/db6ee917bfb17274be238249fdbb5d800d97ec31\nhttps://www.suse.com/security/cve/CVE-2022-1949.html\nhttps://wiki.astralinux.ru/astra-linux-se17-bulletin-2023-0426SE17\n\nhttps://wiki.astralinux.ru/astra-linux-se47-bulletin-2023-0727SE47\nhttps://abf.rosalinux.ru/advisories/ROSA-SA-2023-2237\nhttp://repo.red-soft.ru/redos/7.3c/x86_64/updates/\nhttps://abf.rosa.ru/advisories/ROSA-SA-2024-2404",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e, \u041f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e \u0437\u0430\u0449\u0438\u0442\u044b",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-284, CWE-863",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,5)"
}
GHSA-X847-VXVJ-G6RJ
Vulnerability from github – Published: 2022-06-03 00:01 – Updated: 2022-06-14 00:00
VLAI?
Details
An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.
Severity ?
7.5 (High)
{
"affected": [],
"aliases": [
"CVE-2022-1949"
],
"database_specific": {
"cwe_ids": [
"CWE-639",
"CWE-863"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2022-06-02T14:15:00Z",
"severity": "HIGH"
},
"details": "An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.",
"id": "GHSA-x847-vxvj-g6rj",
"modified": "2022-06-14T00:00:37Z",
"published": "2022-06-03T00:01:01Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1949"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2091781"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
OPENSUSE-SU-2024:12113-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
389-ds-2.1.1~git22.faef73366-1.1 on GA media
Notes
Title of the patch
389-ds-2.1.1~git22.faef73366-1.1 on GA media
Description of the patch
These are all security issues fixed in the 389-ds-2.1.1~git22.faef73366-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-12113
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "389-ds-2.1.1~git22.faef73366-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the 389-ds-2.1.1~git22.faef73366-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-12113",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12113-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1949 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1949/"
}
],
"title": "389-ds-2.1.1~git22.faef73366-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:12113-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "389-ds-2.1.1~git22.faef73366-1.1.aarch64",
"product": {
"name": "389-ds-2.1.1~git22.faef73366-1.1.aarch64",
"product_id": "389-ds-2.1.1~git22.faef73366-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "389-ds-devel-2.1.1~git22.faef73366-1.1.aarch64",
"product": {
"name": "389-ds-devel-2.1.1~git22.faef73366-1.1.aarch64",
"product_id": "389-ds-devel-2.1.1~git22.faef73366-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-2.1.1~git22.faef73366-1.1.aarch64",
"product": {
"name": "389-ds-snmp-2.1.1~git22.faef73366-1.1.aarch64",
"product_id": "389-ds-snmp-2.1.1~git22.faef73366-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "lib389-2.1.1~git22.faef73366-1.1.aarch64",
"product": {
"name": "lib389-2.1.1~git22.faef73366-1.1.aarch64",
"product_id": "lib389-2.1.1~git22.faef73366-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libsvrcore0-2.1.1~git22.faef73366-1.1.aarch64",
"product": {
"name": "libsvrcore0-2.1.1~git22.faef73366-1.1.aarch64",
"product_id": "libsvrcore0-2.1.1~git22.faef73366-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-2.1.1~git22.faef73366-1.1.ppc64le",
"product": {
"name": "389-ds-2.1.1~git22.faef73366-1.1.ppc64le",
"product_id": "389-ds-2.1.1~git22.faef73366-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "389-ds-devel-2.1.1~git22.faef73366-1.1.ppc64le",
"product": {
"name": "389-ds-devel-2.1.1~git22.faef73366-1.1.ppc64le",
"product_id": "389-ds-devel-2.1.1~git22.faef73366-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-2.1.1~git22.faef73366-1.1.ppc64le",
"product": {
"name": "389-ds-snmp-2.1.1~git22.faef73366-1.1.ppc64le",
"product_id": "389-ds-snmp-2.1.1~git22.faef73366-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "lib389-2.1.1~git22.faef73366-1.1.ppc64le",
"product": {
"name": "lib389-2.1.1~git22.faef73366-1.1.ppc64le",
"product_id": "lib389-2.1.1~git22.faef73366-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libsvrcore0-2.1.1~git22.faef73366-1.1.ppc64le",
"product": {
"name": "libsvrcore0-2.1.1~git22.faef73366-1.1.ppc64le",
"product_id": "libsvrcore0-2.1.1~git22.faef73366-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-2.1.1~git22.faef73366-1.1.s390x",
"product": {
"name": "389-ds-2.1.1~git22.faef73366-1.1.s390x",
"product_id": "389-ds-2.1.1~git22.faef73366-1.1.s390x"
}
},
{
"category": "product_version",
"name": "389-ds-devel-2.1.1~git22.faef73366-1.1.s390x",
"product": {
"name": "389-ds-devel-2.1.1~git22.faef73366-1.1.s390x",
"product_id": "389-ds-devel-2.1.1~git22.faef73366-1.1.s390x"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-2.1.1~git22.faef73366-1.1.s390x",
"product": {
"name": "389-ds-snmp-2.1.1~git22.faef73366-1.1.s390x",
"product_id": "389-ds-snmp-2.1.1~git22.faef73366-1.1.s390x"
}
},
{
"category": "product_version",
"name": "lib389-2.1.1~git22.faef73366-1.1.s390x",
"product": {
"name": "lib389-2.1.1~git22.faef73366-1.1.s390x",
"product_id": "lib389-2.1.1~git22.faef73366-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libsvrcore0-2.1.1~git22.faef73366-1.1.s390x",
"product": {
"name": "libsvrcore0-2.1.1~git22.faef73366-1.1.s390x",
"product_id": "libsvrcore0-2.1.1~git22.faef73366-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "389-ds-2.1.1~git22.faef73366-1.1.x86_64",
"product": {
"name": "389-ds-2.1.1~git22.faef73366-1.1.x86_64",
"product_id": "389-ds-2.1.1~git22.faef73366-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "389-ds-devel-2.1.1~git22.faef73366-1.1.x86_64",
"product": {
"name": "389-ds-devel-2.1.1~git22.faef73366-1.1.x86_64",
"product_id": "389-ds-devel-2.1.1~git22.faef73366-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "389-ds-snmp-2.1.1~git22.faef73366-1.1.x86_64",
"product": {
"name": "389-ds-snmp-2.1.1~git22.faef73366-1.1.x86_64",
"product_id": "389-ds-snmp-2.1.1~git22.faef73366-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "lib389-2.1.1~git22.faef73366-1.1.x86_64",
"product": {
"name": "lib389-2.1.1~git22.faef73366-1.1.x86_64",
"product_id": "lib389-2.1.1~git22.faef73366-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libsvrcore0-2.1.1~git22.faef73366-1.1.x86_64",
"product": {
"name": "libsvrcore0-2.1.1~git22.faef73366-1.1.x86_64",
"product_id": "libsvrcore0-2.1.1~git22.faef73366-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-2.1.1~git22.faef73366-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.aarch64"
},
"product_reference": "389-ds-2.1.1~git22.faef73366-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-2.1.1~git22.faef73366-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.ppc64le"
},
"product_reference": "389-ds-2.1.1~git22.faef73366-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-2.1.1~git22.faef73366-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.s390x"
},
"product_reference": "389-ds-2.1.1~git22.faef73366-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-2.1.1~git22.faef73366-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.x86_64"
},
"product_reference": "389-ds-2.1.1~git22.faef73366-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-2.1.1~git22.faef73366-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.aarch64"
},
"product_reference": "389-ds-devel-2.1.1~git22.faef73366-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-2.1.1~git22.faef73366-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.ppc64le"
},
"product_reference": "389-ds-devel-2.1.1~git22.faef73366-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-2.1.1~git22.faef73366-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.s390x"
},
"product_reference": "389-ds-devel-2.1.1~git22.faef73366-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-devel-2.1.1~git22.faef73366-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.x86_64"
},
"product_reference": "389-ds-devel-2.1.1~git22.faef73366-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-2.1.1~git22.faef73366-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.aarch64"
},
"product_reference": "389-ds-snmp-2.1.1~git22.faef73366-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-2.1.1~git22.faef73366-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.ppc64le"
},
"product_reference": "389-ds-snmp-2.1.1~git22.faef73366-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-2.1.1~git22.faef73366-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.s390x"
},
"product_reference": "389-ds-snmp-2.1.1~git22.faef73366-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "389-ds-snmp-2.1.1~git22.faef73366-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.x86_64"
},
"product_reference": "389-ds-snmp-2.1.1~git22.faef73366-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-2.1.1~git22.faef73366-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.aarch64"
},
"product_reference": "lib389-2.1.1~git22.faef73366-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-2.1.1~git22.faef73366-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.ppc64le"
},
"product_reference": "lib389-2.1.1~git22.faef73366-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-2.1.1~git22.faef73366-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.s390x"
},
"product_reference": "lib389-2.1.1~git22.faef73366-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lib389-2.1.1~git22.faef73366-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.x86_64"
},
"product_reference": "lib389-2.1.1~git22.faef73366-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-2.1.1~git22.faef73366-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.aarch64"
},
"product_reference": "libsvrcore0-2.1.1~git22.faef73366-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-2.1.1~git22.faef73366-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.ppc64le"
},
"product_reference": "libsvrcore0-2.1.1~git22.faef73366-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-2.1.1~git22.faef73366-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.s390x"
},
"product_reference": "libsvrcore0-2.1.1~git22.faef73366-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvrcore0-2.1.1~git22.faef73366-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.x86_64"
},
"product_reference": "libsvrcore0-2.1.1~git22.faef73366-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-1949",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1949"
}
],
"notes": [
{
"category": "general",
"text": "An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.aarch64",
"openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.ppc64le",
"openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.s390x",
"openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.x86_64",
"openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.aarch64",
"openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.ppc64le",
"openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.s390x",
"openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.x86_64",
"openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.aarch64",
"openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.ppc64le",
"openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.s390x",
"openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.x86_64",
"openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.aarch64",
"openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.ppc64le",
"openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.s390x",
"openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.x86_64",
"openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.aarch64",
"openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.ppc64le",
"openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.s390x",
"openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1949",
"url": "https://www.suse.com/security/cve/CVE-2022-1949"
},
{
"category": "external",
"summary": "SUSE Bug 1199889 for CVE-2022-1949",
"url": "https://bugzilla.suse.com/1199889"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.aarch64",
"openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.ppc64le",
"openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.s390x",
"openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.x86_64",
"openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.aarch64",
"openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.ppc64le",
"openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.s390x",
"openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.x86_64",
"openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.aarch64",
"openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.ppc64le",
"openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.s390x",
"openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.x86_64",
"openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.aarch64",
"openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.ppc64le",
"openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.s390x",
"openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.x86_64",
"openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.aarch64",
"openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.ppc64le",
"openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.s390x",
"openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.aarch64",
"openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.ppc64le",
"openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.s390x",
"openSUSE Tumbleweed:389-ds-2.1.1~git22.faef73366-1.1.x86_64",
"openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.aarch64",
"openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.ppc64le",
"openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.s390x",
"openSUSE Tumbleweed:389-ds-devel-2.1.1~git22.faef73366-1.1.x86_64",
"openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.aarch64",
"openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.ppc64le",
"openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.s390x",
"openSUSE Tumbleweed:389-ds-snmp-2.1.1~git22.faef73366-1.1.x86_64",
"openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.aarch64",
"openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.ppc64le",
"openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.s390x",
"openSUSE Tumbleweed:lib389-2.1.1~git22.faef73366-1.1.x86_64",
"openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.aarch64",
"openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.ppc64le",
"openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.s390x",
"openSUSE Tumbleweed:libsvrcore0-2.1.1~git22.faef73366-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2022-1949"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…