CVE-2020-8027
published 2021-02-11CVE-2020-8027: A Insecure Temporary File vulnerability in openldap2 of SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 15; openSUSE Leap 15.1…
medium6.6CVSS 3.1
AVLACLPRLUINSUCLILAH
A Insecure Temporary File vulnerability in openldap2 of SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 15; openSUSE Leap 15.1, openSUSE Leap 15.2 allows local attackers to overwrite arbitrary files and gain access to the openldap2 configuration This issue affects: SUSE Linux Enterprise Server 15-LTSS openldap2 versions prior to 2.4.46-9.37.1. SUSE Linux Enterprise Server for SAP 15 openldap2 versions prior to 2.4.46-9.37.1. openSUSE Leap 15.1 openldap2 versions prior to 2.4.46-lp151.10.18.1. openSUSE Leap 15.2 openldap2 versions prior to 2.4.46-lp152.14.9.1.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| opensuse | openldap2 | < 2.4.46-9.37.1 | 2.4.46-9.37.1 |
| opensuse | openldap2 | < 2.4.46-lp151.10.18.1 | 2.4.46-lp151.10.18.1 |
| opensuse | openldap2 | < 2.4.46-lp152.14.9.1 | 2.4.46-lp152.14.9.1 |
| opensuse | opensuse_leap_15.1 | >= openldap2 < 2.4.46-lp151.10.18.1 | 2.4.46-lp151.10.18.1 |
| opensuse | opensuse_leap_15.2 | >= openldap2 < 2.4.46-lp152.14.9.1 | 2.4.46-lp152.14.9.1 |
| suse | suse_linux_enterprise_server_15-ltss | >= openldap2 < 2.4.46-9.37.1 | 2.4.46-9.37.1 |
| suse | suse_linux_enterprise_server_for_sap_15 | >= openldap2 < 2.4.46-9.37.1 | 2.4.46-9.37.1 |