Extended Lifecycle Support CVE dashboard by TuxСare

CVEs Releases Projects

Release Info

Advisory: CLSA-2022:1652986454

OS: Ubuntu 16.04 ELS

Public date: 2022-05-19

Project: openldap

Version: 2.4.42+dfsg-2ubuntu3.13.tuxcare.els1

Errata link: https://errata.cloudlinux.com/ubuntu16-els/CLSA-2022-1652986454.html

Changelog

* SECURITY UPDATE: SQL injection vulnerability - debian/patches/CVE-2022-29155.patch: Escape filter values in servers/slapd/back-sql/search.c. - CVE-2022-29155

Update

Update command: apt-get update apt-get --only-upgrade install openldap*

Packages list

ldap-utils_2.4.42+dfsg-2ubuntu3.13.tuxcare.els1_amd64.deb libldap-2.4-2_2.4.42+dfsg-2ubuntu3.13.tuxcare.els1_amd64.deb libldap2-dev_2.4.42+dfsg-2ubuntu3.13.tuxcare.els1_amd64.deb slapd_2.4.42+dfsg-2ubuntu3.13.tuxcare.els1_amd64.deb slapd-smbk5pwd_2.4.42+dfsg-2ubuntu3.13.tuxcare.els1_amd64.deb

CVEs

CVE-2022-29155