SUSE-SU-2022:2163-1 -- SLES 389-ds, lib389, libsvrcore0ID: oval:org.secpod.oval:def:89046421 | Date: (C)2022-06-24 (M)2023-08-16 |
Class: PATCH | Family: unix |
This update for 389-ds fixes the following issues: - CVE-2022-1949: Fixed full access control bypass with simple crafted query . - CVE-2022-0918: Fixed denial of service issue via crafted messages . - CVE-2022-0996: Fixed mishandling of password expiry . - CVE-2021-4091: Fixed double free in psearch . - CVE-2021-3652: Fixed disabled accounts may be able to bind with crypt passwords .
Platform: |
SUSE Linux Enterprise Server 15 SP1 |
Product: |
389-ds |
lib389 |
libsvrcore0 |