[Forgot Password]
Login  Register Subscribe

23631

 
 

115084

 
 

97559

 
 

909

 
 

78730

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

SUSE-SU-2016:0224-1 -- Suse openldap2

ID: oval:org.secpod.oval:def:400696Date: (C)2016-11-22   (M)2017-11-15
Class: PATCHFamily: unix




This update fixes the following security issues: - CVE-2015-6908: The ber_get_next function allowed remote attackers to cause a denial of service via crafted BER data, as demonstrated by an attack against slapd. - CVE-2015-4000: Fix weak Diffie-Hellman size vulnerability. It also fixes the following non-security bugs: - bsc#955210: Unresponsive LDAP host lookups in IPv6 environment This update adds the following functionality: - fate#319300: SHA2 password hashing module that can be loaded on-demand.

Platform:
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Server 12
Product:
openldap2
Reference:
SUSE-SU-2016:0224-1
CVE-2015-4000
CVE-2015-6908
CVE    2
CVE-2015-4000
CVE-2015-6908
CPE    16
cpe:/o:canonical:ubuntu_linux:14.10
cpe:/o:apple:mac_os_x:10.10.3
cpe:/o:mozilla:firefox_os:2.2
cpe:/a:mozilla:network_security_services:3.19
...

© 2013 SecPod Technologies