[CLSA-2022:1646061262] Fix CVE(s): CVE-2022-24407
Type:
security
Severity:
moderate
Release date:
2022-02-28 15:14:22 UTC
Description:
* SECURITY UPDATE: SQL injection in SQL plugin - debian/patches/CVE-2022-24407.patch: escape password for SQL insert/update commands in plugins/sql.c. - CVE-2022-24407
Updated packages:
  • cyrus-sasl2-doc_2.1.26.dfsg1-14ubuntu0.2+tuxcare.els1_all.deb
    sha:75d3cdadb0d475129d74101691e70d3772073e57
  • libsasl2-2_2.1.26.dfsg1-14ubuntu0.2+tuxcare.els1_amd64.deb
    sha:4b83c3dae7087fc09912f8f8797098e5ea8d4d9b
  • libsasl2-dev_2.1.26.dfsg1-14ubuntu0.2+tuxcare.els1_amd64.deb
    sha:dbadf721eeee545e4d0365131a576dc224af9cdf
  • libsasl2-modules_2.1.26.dfsg1-14ubuntu0.2+tuxcare.els1_amd64.deb
    sha:3eba24ef550dd10093ca98b5fc3868878d157f93
  • libsasl2-modules-db_2.1.26.dfsg1-14ubuntu0.2+tuxcare.els1_amd64.deb
    sha:3a8a036f487051afcb1f8044a52913f997b5c07b
  • libsasl2-modules-gssapi-heimdal_2.1.26.dfsg1-14ubuntu0.2+tuxcare.els1_amd64.deb
    sha:e237bf7d6b0f20bda8620d229827bda6de5e7fac
  • libsasl2-modules-gssapi-mit_2.1.26.dfsg1-14ubuntu0.2+tuxcare.els1_amd64.deb
    sha:dc2ad9a921b687c1ed5ab3d60617acaf914759f9
  • libsasl2-modules-ldap_2.1.26.dfsg1-14ubuntu0.2+tuxcare.els1_amd64.deb
    sha:695b9db3df4b2013eee2c64d227d20317bb02ed4
  • libsasl2-modules-otp_2.1.26.dfsg1-14ubuntu0.2+tuxcare.els1_amd64.deb
    sha:be020cdad9175e7fc0c7e0ee0993ca3b50c28926
  • libsasl2-modules-sql_2.1.26.dfsg1-14ubuntu0.2+tuxcare.els1_amd64.deb
    sha:27d61dc427e2ec94aca81455204dbc0ce0eb53cb
  • sasl2-bin_2.1.26.dfsg1-14ubuntu0.2+tuxcare.els1_amd64.deb
    sha:de3d415e526942eeadb1242bf53043b69557a1b1
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.