Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Производитель ПО
Наименование ПО
libldap-2_4-2
(any)
libldap-2_4-2-32bit
(any)
libldap-2_4-2-debuginfo
(any)
libldap-2_4-2-debuginfo-32bit
(any)
openldap2
(any)
openldap2-back-meta
(any)
openldap2-back-meta-debuginfo
(any)
openldap2-back-perl
(any)
openldap2-back-perl-debuginfo
(any)
openldap2-client
(any)
openldap2-client-debuginfo
(any)
openldap2-client-debugsource
(any)
openldap2-debuginfo
(any)
openldap2-debugsource
(any)
openldap2-devel
(any)
openldap2-devel-static
(any)
Описание
Уведомление безопасности об уязвимостях SUSE Linux Enterprise Module for Legacy Software 12, SUSE Linux Enterprise Desktop 12-SP1, SUSE Linux Enterprise Software Development Kit 12-SP1, SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server for SAP 12, SUSE Linux Enterprise Server 12-SP1, SUSE Linux Enterprise Desktop 12, SUSE Linux Enterprise Software Development Kit 12
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
SUSE Linux Enterprise Module for Legacy Software 12:
ppc64le, s390x, x86_64:
compat-libldap-2_3-0-debuginfo - 2.3.37-18.13.4
compat-libldap-2_3-0 - 2.3.37-18.13.4
SUSE Linux Enterprise Desktop 12-SP1:
x86_64:
libldap-2_4-2-32bit - 2.4.41-18.13.1
openldap2-client-debugsource - 2.4.41-18.13.1
libldap-2_4-2-debuginfo - 2.4.41-18.13.1
openldap2-client - 2.4.41-18.13.1
libldap-2_4-2 - 2.4.41-18.13.1
openldap2-client-debuginfo - 2.4.41-18.13.1
libldap-2_4-2-debuginfo-32bit - 2.4.41-18.13.1
SUSE Linux Enterprise Software Development Kit 12-SP1:
ppc64le, s390x, x86_64:
openldap2-devel-static - 2.4.41-18.13.1
openldap2-client-debugsource - 2.4.41-18.13.1
openldap2-back-perl-debuginfo - 2.4.41-18.13.4
openldap2-debugsource - 2.4.41-18.13.4
openldap2-client-debuginfo - 2.4.41-18.13.1
openldap2-devel - 2.4.41-18.13.1
openldap2-back-perl - 2.4.41-18.13.4
openldap2-debuginfo - 2.4.41-18.13.4
SUSE Linux Enterprise Server 12:
ppc64le, s390x, x86_64:
openldap2 - 2.4.41-18.13.4
openldap2-client-debugsource - 2.4.41-18.13.1
libldap-2_4-2-debuginfo - 2.4.41-18.13.1
openldap2-client - 2.4.41-18.13.1
openldap2-debugsource - 2.4.41-18.13.4
libldap-2_4-2 - 2.4.41-18.13.1
openldap2-client-debuginfo - 2.4.41-18.13.1
openldap2-back-meta - 2.4.41-18.13.4
openldap2-back-meta-debuginfo - 2.4.41-18.13.4
openldap2-debuginfo - 2.4.41-18.13.4
SUSE Linux Enterprise Server for SAP 12:
x86_64:
compat-libldap-2_3-0-debuginfo - 2.3.37-18.13.4
compat-libldap-2_3-0 - 2.3.37-18.13.4
SUSE Linux Enterprise Server 12-SP1:
ppc64le, s390x, x86_64:
openldap2 - 2.4.41-18.13.4
openldap2-client-debugsource - 2.4.41-18.13.1
libldap-2_4-2-debuginfo - 2.4.41-18.13.1
openldap2-client - 2.4.41-18.13.1
openldap2-debugsource - 2.4.41-18.13.4
libldap-2_4-2 - 2.4.41-18.13.1
openldap2-client-debuginfo - 2.4.41-18.13.1
openldap2-back-meta - 2.4.41-18.13.4
openldap2-back-meta-debuginfo - 2.4.41-18.13.4
openldap2-debuginfo - 2.4.41-18.13.4
SUSE Linux Enterprise Desktop 12:
x86_64:
libldap-2_4-2-32bit - 2.4.41-18.13.1
openldap2-client-debugsource - 2.4.41-18.13.1
libldap-2_4-2-debuginfo - 2.4.41-18.13.1
openldap2-client - 2.4.41-18.13.1
libldap-2_4-2 - 2.4.41-18.13.1
openldap2-client-debuginfo - 2.4.41-18.13.1
libldap-2_4-2-debuginfo-32bit - 2.4.41-18.13.1
SUSE Linux Enterprise Software Development Kit 12:
ppc64le, s390x, x86_64:
openldap2-devel-static - 2.4.41-18.13.1
openldap2-client-debugsource - 2.4.41-18.13.1
openldap2-back-perl-debuginfo - 2.4.41-18.13.4
openldap2-debugsource - 2.4.41-18.13.4
openldap2-client-debuginfo - 2.4.41-18.13.1
openldap2-devel - 2.4.41-18.13.1
openldap2-back-perl - 2.4.41-18.13.4
openldap2-debuginfo - 2.4.41-18.13.4
SUSE Linux Enterprise Module for Legacy Software 12:
ppc64le, s390x, x86_64:
compat-libldap-2_3-0-debuginfo - 2.3.37-18.13.4
compat-libldap-2_3-0 - 2.3.37-18.13.4
SUSE Linux Enterprise Desktop 12-SP1:
x86_64:
libldap-2_4-2-32bit - 2.4.41-18.13.1
openldap2-client-debugsource - 2.4.41-18.13.1
libldap-2_4-2-debuginfo - 2.4.41-18.13.1
openldap2-client - 2.4.41-18.13.1
libldap-2_4-2 - 2.4.41-18.13.1
openldap2-client-debuginfo - 2.4.41-18.13.1
libldap-2_4-2-debuginfo-32bit - 2.4.41-18.13.1
SUSE Linux Enterprise Software Development Kit 12-SP1:
ppc64le, s390x, x86_64:
openldap2-devel-static - 2.4.41-18.13.1
openldap2-client-debugsource - 2.4.41-18.13.1
openldap2-back-perl-debuginfo - 2.4.41-18.13.4
openldap2-debugsource - 2.4.41-18.13.4
openldap2-client-debuginfo - 2.4.41-18.13.1
openldap2-devel - 2.4.41-18.13.1
openldap2-back-perl - 2.4.41-18.13.4
openldap2-debuginfo - 2.4.41-18.13.4
SUSE Linux Enterprise Server 12:
ppc64le, s390x, x86_64:
openldap2 - 2.4.41-18.13.4
openldap2-client-debugsource - 2.4.41-18.13.1
libldap-2_4-2-debuginfo - 2.4.41-18.13.1
openldap2-client - 2.4.41-18.13.1
openldap2-debugsource - 2.4.41-18.13.4
libldap-2_4-2 - 2.4.41-18.13.1
openldap2-client-debuginfo - 2.4.41-18.13.1
openldap2-back-meta - 2.4.41-18.13.4
openldap2-back-meta-debuginfo - 2.4.41-18.13.4
openldap2-debuginfo - 2.4.41-18.13.4
SUSE Linux Enterprise Server for SAP 12:
x86_64:
compat-libldap-2_3-0-debuginfo - 2.3.37-18.13.4
compat-libldap-2_3-0 - 2.3.37-18.13.4
SUSE Linux Enterprise Server 12-SP1:
ppc64le, s390x, x86_64:
openldap2 - 2.4.41-18.13.4
openldap2-client-debugsource - 2.4.41-18.13.1
libldap-2_4-2-debuginfo - 2.4.41-18.13.1
openldap2-client - 2.4.41-18.13.1
openldap2-debugsource - 2.4.41-18.13.4
libldap-2_4-2 - 2.4.41-18.13.1
openldap2-client-debuginfo - 2.4.41-18.13.1
openldap2-back-meta - 2.4.41-18.13.4
openldap2-back-meta-debuginfo - 2.4.41-18.13.4
openldap2-debuginfo - 2.4.41-18.13.4
SUSE Linux Enterprise Desktop 12:
x86_64:
libldap-2_4-2-32bit - 2.4.41-18.13.1
openldap2-client-debugsource - 2.4.41-18.13.1
libldap-2_4-2-debuginfo - 2.4.41-18.13.1
openldap2-client - 2.4.41-18.13.1
libldap-2_4-2 - 2.4.41-18.13.1
openldap2-client-debuginfo - 2.4.41-18.13.1
libldap-2_4-2-debuginfo-32bit - 2.4.41-18.13.1
SUSE Linux Enterprise Software Development Kit 12:
ppc64le, s390x, x86_64:
openldap2-devel-static - 2.4.41-18.13.1
openldap2-client-debugsource - 2.4.41-18.13.1
openldap2-back-perl-debuginfo - 2.4.41-18.13.4
openldap2-debugsource - 2.4.41-18.13.4
openldap2-client-debuginfo - 2.4.41-18.13.1
openldap2-devel - 2.4.41-18.13.1
openldap2-back-perl - 2.4.41-18.13.4
openldap2-debuginfo - 2.4.41-18.13.4
Ссылки
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00031.html
https://bugzilla.suse.com/937766
https://bugzilla.suse.com/945582
https://bugzilla.suse.com/955210
Источник: CVE
Наименование: CVE-2015-6908
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6908
Источник: CVE
Наименование: CVE-2015-4000
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4000
https://bugzilla.suse.com/937766
https://bugzilla.suse.com/945582
https://bugzilla.suse.com/955210
Источник: CVE
Наименование: CVE-2015-6908
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6908
Источник: CVE
Наименование: CVE-2015-4000
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4000