Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2022:4214-1

Опубликовано: 24 нояб. 2022
Источник: suse-cvrf

Описание

Security update for libdb-4_8

This update for libdb-4_8 fixes the following issues:

  • CVE-2019-2708: Fixed partial DoS due to data store execution (bsc#1174414).

Список пакетов

Container caasp/v4/cilium:1.6.6
libdb-4_8-4.8.30-150000.7.6.1
Container suse/389-ds:latest
db48-utils-4.8.30-150000.7.6.1
libdb-4_8-4.8.30-150000.7.6.1
Container suse/manager/5.0/x86_64/server:latest
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP2-BYOS-Azure
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP2-HPC-BYOS-Azure
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP2-SAP-Azure
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP2-SAP-BYOS-Azure
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP2-SAP-BYOS-EC2-HVM
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP2-SAP-BYOS-GCE
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP2-SAP-EC2-HVM
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP2-SAP-GCE
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-Azure
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-EC2-HVM
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP3-SAPCAL-Azure
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP3-SAPCAL-EC2-HVM
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP3-SAPCAL-GCE
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP4-Manager-Server-4-3
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP4-Manager-Server-4-3-Azure-llc
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP4-Manager-Server-4-3-Azure-ltd
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP4-Manager-Server-4-3-BYOS
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP4-Manager-Server-4-3-EC2-llc
libdb-4_8-4.8.30-150000.7.6.1
Image SLES15-SP4-Manager-Server-4-3-EC2-ltd
libdb-4_8-4.8.30-150000.7.6.1
Image server-image
libdb-4_8-4.8.30-150000.7.6.1
SUSE Linux Enterprise Micro 5.1
db48-utils-4.8.30-150000.7.6.1
libdb-4_8-4.8.30-150000.7.6.1
SUSE Linux Enterprise Micro 5.2
db48-utils-4.8.30-150000.7.6.1
libdb-4_8-4.8.30-150000.7.6.1
SUSE Linux Enterprise Micro 5.3
db48-utils-4.8.30-150000.7.6.1
libdb-4_8-4.8.30-150000.7.6.1
SUSE Linux Enterprise Module for Basesystem 15 SP3
db48-utils-4.8.30-150000.7.6.1
libdb-4_8-4.8.30-150000.7.6.1
libdb-4_8-32bit-4.8.30-150000.7.6.1
libdb-4_8-devel-4.8.30-150000.7.6.1
SUSE Linux Enterprise Module for Basesystem 15 SP4
db48-utils-4.8.30-150000.7.6.1
libdb-4_8-4.8.30-150000.7.6.1
libdb-4_8-32bit-4.8.30-150000.7.6.1
libdb-4_8-devel-4.8.30-150000.7.6.1
openSUSE Leap 15.3
db48-doc-4.8.30-150000.7.6.1
db48-utils-4.8.30-150000.7.6.1
libdb-4_8-4.8.30-150000.7.6.1
libdb-4_8-32bit-4.8.30-150000.7.6.1
libdb-4_8-devel-4.8.30-150000.7.6.1
libdb-4_8-devel-32bit-4.8.30-150000.7.6.1
libdb_java-4_8-4.8.30-150000.7.6.1
libdb_java-4_8-devel-4.8.30-150000.7.6.1
openSUSE Leap 15.4
db48-doc-4.8.30-150000.7.6.1
db48-utils-4.8.30-150000.7.6.1
libdb-4_8-4.8.30-150000.7.6.1
libdb-4_8-32bit-4.8.30-150000.7.6.1
libdb-4_8-devel-4.8.30-150000.7.6.1
libdb-4_8-devel-32bit-4.8.30-150000.7.6.1
libdb_java-4_8-4.8.30-150000.7.6.1
libdb_java-4_8-devel-4.8.30-150000.7.6.1
openSUSE Leap Micro 5.2
db48-utils-4.8.30-150000.7.6.1
libdb-4_8-4.8.30-150000.7.6.1
openSUSE Leap Micro 5.3
db48-utils-4.8.30-150000.7.6.1
libdb-4_8-4.8.30-150000.7.6.1

Ссылки

Описание

Vulnerability in the Data Store component of Oracle Berkeley DB. Supported versions that are affected are Prior to 6.138, prior to 6.2.38 and prior to 18.1.32. Easily exploitable vulnerability allows low privileged attacker having Local Logon privilege with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Data Store. CVSS 3.0 Base Score 3.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L).

Затронутые продукты
Container caasp/v4/cilium:1.6.6:libdb-4_8-4.8.30-150000.7.6.1
Container suse/389-ds:latest:db48-utils-4.8.30-150000.7.6.1
Container suse/389-ds:latest:libdb-4_8-4.8.30-150000.7.6.1
Container suse/manager/5.0/x86_64/server:latest:libdb-4_8-4.8.30-150000.7.6.1
Ссылки
Уязвимость SUSE-SU-2022:4214-1