This update for openldap2_5 fixes the following issues:
Security fixes:
* CVE-2026-22185: Fixed possible crash in malicious DB (bsc#1256297)
Other fixes:
* Update to version 2.5.20+11:
* ITS#10421 mdb_load: check for malicious input
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-256=1
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2026-256=1
* Basesystem Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-256=1
* Server Applications Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2026-256=1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586)
* openldap2_5-ppolicy-check-password-debuginfo-2.5.20+11-150500.11.38.1
* openldap2_5-contrib-2.5.20+11-150500.11.38.1
* openldap2_5-client-2.5.20+11-150500.11.38.1
* openldap2_5-2.5.20+11-150500.11.38.1
* openldap2_5-debugsource-2.5.20+11-150500.11.38.1
* openldap2_5-devel-2.5.20+11-150500.11.38.1
* libldap-2_5-0-2.5.20+11-150500.11.38.1
* libldap-2_5-0-debuginfo-2.5.20+11-150500.11.38.1
* openldap2_5-ppolicy-check-password-2.5.20+11-150500.11.38.1
* openldap2_5-debuginfo-2.5.20+11-150500.11.38.1
* openldap2_5-contrib-debuginfo-2.5.20+11-150500.11.38.1
* openSUSE Leap 15.5 (noarch)
* openldap2_5-doc-2.5.20+11-150500.11.38.1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* openldap2_5-ppolicy-check-password-debuginfo-2.5.20+11-150500.11.38.1
* openldap2_5-contrib-2.5.20+11-150500.11.38.1
* openldap2_5-client-2.5.20+11-150500.11.38.1
* openldap2_5-2.5.20+11-150500.11.38.1
* openldap2_5-debugsource-2.5.20+11-150500.11.38.1
*...
Read the Full Advisory* bsc#1256297
## References:
* https://www.suse.com/security/cve/CVE-2026-22185.html
* https://bugzilla.suse.com/show_bug.cgi?id=1256297
Get the latest Linux and open source security news straight to your inbox.