exploitDog

SUSE-SU-2023:2503-1

Опубликовано: 13 июн. 2023

Источник: suse-cvrf

Описание

Security update for openldap2

This update for openldap2 fixes the following issues:

CVE-2023-2953: Fixed null pointer deref in ber_memalloc_x (bsc#1211795).

Список пакетов

SUSE Linux Enterprise Module for Legacy 12

compat-libldap-2_3-0-2.3.37-45.1

SUSE Linux Enterprise Server for SAP Applications 12 SP4

compat-libldap-2_3-0-2.3.37-45.1

SUSE Linux Enterprise Server for SAP Applications 12 SP5

compat-libldap-2_3-0-2.3.37-45.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20232503-1/
Link for SUSE-SU-2023:2503-1
https://lists.suse.com/pipermail/sle-updates/2023-June/029841.html
E-Mail link for SUSE-SU-2023:2503-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1211795
SUSE Bug 1211795
https://www.suse.com/security/cve/CVE-2023-2953/
SUSE CVE CVE-2023-2953 page

Описание

A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.

Затронутые продукты

SUSE Linux Enterprise Module for Legacy 12:compat-libldap-2_3-0-2.3.37-45.1

SUSE Linux Enterprise Server for SAP Applications 12 SP4:compat-libldap-2_3-0-2.3.37-45.1

SUSE Linux Enterprise Server for SAP Applications 12 SP5:compat-libldap-2_3-0-2.3.37-45.1

Ссылки

https://www.suse.com/security/cve/CVE-2023-2953.html
CVE-2023-2953
https://bugzilla.suse.com/1211795
SUSE Bug 1211795