Lucene search
OracleLinuxELSA-2020-4497HistoryNov 10, 2020 - 12:00 a.m.
cyrus-sasl security, bug fix, and enhancement update
2020-11-1000:00:00
linux.oracle.com
26
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
[2.1.27-5]
- Reduce excessive GSSAPI plugin logging
- Resolves: rhbz#1274734
[2.1.27-4] - Add support for setting maxssf=0 in GSS-SPNEGO
- Resolves: rhbz#1822133
[2.1.27-3] - Backport GSSAPI Channel Bindings support
- Resolves: rhbz#1817054
[2.1.27-2] - Backport fix for CVE-2019-19906
- Resolves: rhbz#1804036
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 8 | src | cyrus-sasl | < 2.1.27-5.el8 | cyrus-sasl-2.1.27-5.el8.src.rpm |
| oracle linux | 8 | aarch64 | cyrus-sasl | < 2.1.27-5.el8 | cyrus-sasl-2.1.27-5.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | cyrus-sasl-devel | < 2.1.27-5.el8 | cyrus-sasl-devel-2.1.27-5.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | cyrus-sasl-gs2 | < 2.1.27-5.el8 | cyrus-sasl-gs2-2.1.27-5.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | cyrus-sasl-gssapi | < 2.1.27-5.el8 | cyrus-sasl-gssapi-2.1.27-5.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | cyrus-sasl-ldap | < 2.1.27-5.el8 | cyrus-sasl-ldap-2.1.27-5.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | cyrus-sasl-lib | < 2.1.27-5.el8 | cyrus-sasl-lib-2.1.27-5.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | cyrus-sasl-md5 | < 2.1.27-5.el8 | cyrus-sasl-md5-2.1.27-5.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | cyrus-sasl-ntlm | < 2.1.27-5.el8 | cyrus-sasl-ntlm-2.1.27-5.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | cyrus-sasl-plain | < 2.1.27-5.el8 | cyrus-sasl-plain-2.1.27-5.el8.aarch64.rpm |
Related
openvas
openvas
Fedora: Security Advisory for cyrus-sasl (FEDORA-2020-51d591d035)
2020-04-03 00:00:00
Ubuntu: Security Advisory for cyrus-sasl2 (USN-4256-1)
2020-01-29 00:00:00
Debian Security Advisory DSA 4591-1 (cyrus-sasl2 - security update)
2019-12-21 00:00:00
ibm
ibm
fedora
fedora
[SECURITY] Fedora 32 Update: cyrus-sasl-2.1.27-4.fc32
2020-04-01 16:34:38
[SECURITY] Fedora 31 Update: cyrus-sasl-2.1.27-3.fc31
2020-04-04 03:22:19
osv
osv
cyrus-sasl2 - security update
2019-12-20 00:00:00
Moderate: cyrus-sasl security, bug fix, and enhancement update
2020-11-03 12:10:00
CVE-2019-19906
2019-12-19 18:15:12
nessus
nessus
EulerOS 2.0 SP3 : cyrus-sasl (EulerOS-SA-2020-1377)
2020-04-15 00:00:00
SUSE SLES11 Security Update : cyrus-sasl (SUSE-SU-2020:14579-1)
2021-06-10 00:00:00
Photon OS 1.0: Cyrus PHSA-2020-1.0-0283
2020-03-11 00:00:00
debian
debian
[SECURITY] [DLA 2044-1] cyrus-sasl2 security update
2019-12-20 14:38:49
[SECURITY] [DSA 4591-1] cyrus-sasl2 security update
2019-12-20 21:10:08
[SECURITY] [DSA 4591-1] cyrus-sasl2 security update
2019-12-20 21:10:08
prion
prion
Out-of-bounds
2019-12-19 18:15:00
veracode
veracode
Denial Of Service (DoS)
2020-11-05 03:18:22
mageia
mageia
Updated cyrus-sasl packages fix security vulnerability
2020-01-05 18:37:51
cve
cve
CVE-2019-19906
2019-12-19 18:15:00
rocky
rocky
cyrus-sasl security, bug fix, and enhancement update
2020-11-03 12:10:00
redhatcve
redhatcve
CVE-2019-19906
2020-01-16 16:05:01
cbl_mariner
cbl_mariner
CVE-2019-19906 affecting package cyrus-sasl 2.1.27-10
2022-04-09 06:51:52
CVE-2019-19906 affecting package cyrus-sasl 2.1.27-4
2020-09-09 06:09:11
freebsd
freebsd
cyrus-sasl -- Fix off by one error
2019-12-19 00:00:00
debiancve
debiancve
CVE-2019-19906
2019-12-19 18:15:00
ubuntu
ubuntu
Cyrus SASL vulnerability
2020-01-28 00:00:00
alpinelinux
alpinelinux
CVE-2019-19906
2019-12-19 18:15:00
photon
photon
Important Photon OS Security Update - PHSA-2020-0077
2020-04-07 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-2.0-0216
2020-03-07 00:00:00
Important Photon OS Security Update - PHSA-2020-3.0-0077
2020-04-06 00:00:00
almalinux
almalinux
Moderate: cyrus-sasl security, bug fix, and enhancement update
2020-11-03 12:10:00
ubuntucve
ubuntucve
CVE-2019-19906
2019-12-19 00:00:00
redhat
redhat
(RHSA-2021:0146) Moderate: Release of OpenShift Serverless 1.12.0
2021-01-14 13:24:22
(RHSA-2020:5149) Moderate: Release of OpenShift Serverless 1.11.0
2020-11-18 13:59:56
cloudfoundry
cloudfoundry
USN-4256-1: Cyrus SASL vulnerability | Cloud Foundry
2020-02-12 00:00:00
slackware
slackware
[slackware-security] cyrus-sasl
2022-02-25 00:10:10
apple
apple
About the security content of iOS 13.6 and iPadOS 13.6
2020-07-15 00:00:00
About the security content of iOS 13.6 and iPadOS 13.6 - Apple Support
2020-12-15 05:18:44
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related for ELSA-2020-4497