SUSE: 2022:268-1 Important: cyrus-sasl SQL Injection Fix Update

suse

March 8, 2022

The container suse/sle15 was updated

Summary

Advisory ID: SUSE-SU-2022:743-1 Released: Mon Mar 7 22:08:12 2022 Summary: Security update for cyrus-sasl Type: security Severity: important

Topics Covered

security advisory security update sql injection important cyrus-sasl suse container update

References

References : 1194265 1196036 CVE-2022-24407

1194265,1196036,CVE-2022-24407

This update for cyrus-sasl fixes the following issues:

- CVE-2022-24407: Fixed SQL injection in sql_auxprop_store in plugins/sql.c (bsc#1196036).

The following non-security bugs were fixed:

- postfix: sasl authentication with password fails (bsc#1194265).

The following package changes have been done:

- libsasl2-3-2.1.27-150300.4.6.1 updated

Severity

important

Lowest

Low

Medium

High

Critical

Container Advisory ID : SUSE-CU-2022:268-1

Container Tags : suse/sle15:15.3 , suse/sle15:15.3.17.8.88

Container Release : 17.8.88

Severity : important

Type : security

Topics Covered

security advisory security update sql injection important cyrus-sasl suse container update

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

SUSE: 2022:268-1 Important: cyrus-sasl SQL Injection Fix Update

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

SUSE: 2022:268-1 Important: cyrus-sasl SQL Injection Fix Update

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!