Bugzilla – Bug 1211795
VUL-0: CVE-2023-2953: openldap2: null pointer dereference in ber_memalloc_x function
Last modified: 2024-05-14 10:48:57 UTC
null pointer dereference in ber_memalloc_x function https://bugs.openldap.org/show_bug.cgi?id=9904 References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-2953 https://bugzilla.redhat.com/show_bug.cgi?id=2210651
Affected packages: - openSUSE:Factory/openldap2 - SUSE:SLE-12-SP2:Update/openldap2 - SUSE:SLE-12:Update/openldap2 - SUSE:SLE-12-SP4:Update/openldap2 - SUSE:SLE-15-SP2:Update/openldap2 - SUSE:SLE-15:Update/openldap2 - SUSE:SLE-11-SP3:Update/openldap2
SUSE-SU-2023:2484-1: An update that solves one vulnerability can now be installed. Category: security (moderate) Bug References: 1211795 CVE References: CVE-2023-2953 Sources used: openSUSE Leap Micro 5.3 (src): openldap2-2.4.46-150200.14.14.1 openSUSE Leap 15.4 (src): openldap2-2.4.46-150200.14.14.1 openSUSE Leap 15.5 (src): openldap2-2.4.46-150200.14.14.1 SUSE Linux Enterprise Micro for Rancher 5.3 (src): openldap2-2.4.46-150200.14.14.1 SUSE Linux Enterprise Micro 5.3 (src): openldap2-2.4.46-150200.14.14.1 SUSE Linux Enterprise Micro for Rancher 5.4 (src): openldap2-2.4.46-150200.14.14.1 SUSE Linux Enterprise Micro 5.4 (src): openldap2-2.4.46-150200.14.14.1 Basesystem Module 15-SP4 (src): openldap2-2.4.46-150200.14.14.1 Basesystem Module 15-SP5 (src): openldap2-2.4.46-150200.14.14.1 Development Tools Module 15-SP4 (src): openldap2-2.4.46-150200.14.14.1 Development Tools Module 15-SP5 (src): openldap2-2.4.46-150200.14.14.1 SUSE Linux Enterprise Real Time 15 SP3 (src): openldap2-2.4.46-150200.14.14.1 SUSE Linux Enterprise Micro 5.1 (src): openldap2-2.4.46-150200.14.14.1 SUSE Linux Enterprise Micro 5.2 (src): openldap2-2.4.46-150200.14.14.1 SUSE Linux Enterprise Micro for Rancher 5.2 (src): openldap2-2.4.46-150200.14.14.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2023:2483-1: An update that solves one vulnerability can now be installed. Category: security (moderate) Bug References: 1211795 CVE References: CVE-2023-2953 Sources used: SUSE Linux Enterprise Software Development Kit 12 SP5 (src): openldap2-2.4.41-22.19.1 SUSE Linux Enterprise High Performance Computing 12 SP5 (src): openldap2-2.4.41-22.19.1 SUSE Linux Enterprise Server 12 SP5 (src): openldap2-2.4.41-22.19.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5 (src): openldap2-2.4.41-22.19.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2023:2503-1: An update that solves one vulnerability can now be installed. Category: security (moderate) Bug References: 1211795 CVE References: CVE-2023-2953 Sources used: Legacy Module 12 (src): openldap2-2.4.41-45.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4 (src): openldap2-2.4.41-45.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5 (src): openldap2-2.4.41-45.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
done, closing