Oval Definition:oval:org.opensuse.security:def:60689
Revision Date:2020-12-01Version:1
Title:Security update for apache2 (Important)
Description:

This update for apache2 fixes the following issues:

- CVE-2020-1934: mod_proxy_ftp may use uninitialized memory when proxying to a malicious FTP server (bsc#1168404). - CVE-2020-1927: mod_rewrite configurations vulnerable to open redirect (bsc#1168407). - CVE-2020-1938: mod_proxy_ajp: Add 'secret' parameter to proxy workers to implement legacy AJP13 authentication (bsc#1169066).
Family:unixClass:patch
Status:Reference(s):1006984
1006989
1037811
1058058
1064455
1085130
1085671
1087059
1090336
1090766
1090849
1091041
1094301
1094448
1095603
1096985
1097410
1097560
1097824
1097847
1101366
1101776
1101777
1101786
1101788
1101791
1101794
1101800
1101802
1101804
1101810
1103809
1103810
1104076
1106514
1119461
1119465
1131107
1138190
1144903
1146544
1146612
1150466
1150483
1152631
1153108
1153158
1153161
1153811
1154905
1155689
1155897
1155898
1156187
1156402
1157038
1157042
1157070
1157143
1157158
1157191
1157324
1157333
1157464
1158132
1158394
1158398
1158410
1158413
1158417
1158445
1158823
1158824
1158827
1158834
1158900
1158903
1158904
1158954
1159478
1159479
1159482
1159486
1162202
1162675
1164860
1168404
1168407
1169066
1172031
1172225
1172405
1174117
1174120
1174316
1176579
977043
CVE-2017-9798
CVE-2018-0495
CVE-2018-11354
CVE-2018-11355
CVE-2018-11356
CVE-2018-11357
CVE-2018-11358
CVE-2018-11359
CVE-2018-11360
CVE-2018-11361
CVE-2018-11362
CVE-2018-12099
CVE-2018-12470
CVE-2018-12471
CVE-2018-12472
CVE-2018-14339
CVE-2018-14340
CVE-2018-14341
CVE-2018-14342
CVE-2018-14343
CVE-2018-14344
CVE-2018-14367
CVE-2018-14368
CVE-2018-14369
CVE-2018-14370
CVE-2018-16056
CVE-2018-16057
CVE-2018-16058
CVE-2018-3817
CVE-2018-5125
CVE-2018-5127
CVE-2018-5129
CVE-2018-5130
CVE-2018-5131
CVE-2018-5144
CVE-2018-5145
CVE-2018-5146
CVE-2018-5147
CVE-2018-5148
CVE-2019-10220
CVE-2019-14895
CVE-2019-15213
CVE-2019-16231
CVE-2019-17133
CVE-2019-18388
CVE-2019-18389
CVE-2019-18390
CVE-2019-18391
CVE-2019-18634
CVE-2019-18660
CVE-2019-18680
CVE-2019-18683
CVE-2019-18805
CVE-2019-19052
CVE-2019-19062
CVE-2019-19065
CVE-2019-19073
CVE-2019-19074
CVE-2019-19332
CVE-2019-19338
CVE-2019-19523
CVE-2019-19524
CVE-2019-19525
CVE-2019-19527
CVE-2019-19530
CVE-2019-19531
CVE-2019-19532
CVE-2019-19533
CVE-2019-19534
CVE-2019-19535
CVE-2019-19536
CVE-2019-19537
CVE-2019-20807
CVE-2019-2201
CVE-2020-13935
CVE-2020-1472
CVE-2020-1927
CVE-2020-1934
CVE-2020-1935
CVE-2020-1938
CVE-2020-8022
SUSE-SU-2017:2542-1
SUSE-SU-2018:0850-1
SUSE-SU-2018:2317-1
SUSE-SU-2019:2972-1
SUSE-SU-2019:3379-1
SUSE-SU-2020:0016-1
SUSE-SU-2020:0406-1
SUSE-SU-2020:1272-1
SUSE-SU-2020:1791-1
SUSE-SU-2020:2611-1
SUSE-SU-2020:2721-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-lp150.2.12 is installed
  • OR php7-7.2.5-lp150.2.12 is installed
  • OR php7-bcmath-7.2.5-lp150.2.12 is installed
  • OR php7-bz2-7.2.5-lp150.2.12 is installed
  • OR php7-calendar-7.2.5-lp150.2.12 is installed
  • OR php7-ctype-7.2.5-lp150.2.12 is installed
  • OR php7-curl-7.2.5-lp150.2.12 is installed
  • OR php7-dba-7.2.5-lp150.2.12 is installed
  • OR php7-devel-7.2.5-lp150.2.12 is installed
  • OR php7-dom-7.2.5-lp150.2.12 is installed
  • OR php7-embed-7.2.5-lp150.2.12 is installed
  • OR php7-enchant-7.2.5-lp150.2.12 is installed
  • OR php7-exif-7.2.5-lp150.2.12 is installed
  • OR php7-fastcgi-7.2.5-lp150.2.12 is installed
  • OR php7-fileinfo-7.2.5-lp150.2.12 is installed
  • OR php7-firebird-7.2.5-lp150.2.12 is installed
  • OR php7-fpm-7.2.5-lp150.2.12 is installed
  • OR php7-ftp-7.2.5-lp150.2.12 is installed
  • OR php7-gd-7.2.5-lp150.2.12 is installed
  • OR php7-gettext-7.2.5-lp150.2.12 is installed
  • OR php7-gmp-7.2.5-lp150.2.12 is installed
  • OR php7-iconv-7.2.5-lp150.2.12 is installed
  • OR php7-intl-7.2.5-lp150.2.12 is installed
  • OR php7-json-7.2.5-lp150.2.12 is installed
  • OR php7-ldap-7.2.5-lp150.2.12 is installed
  • OR php7-mbstring-7.2.5-lp150.2.12 is installed
  • OR php7-mysql-7.2.5-lp150.2.12 is installed
  • OR php7-odbc-7.2.5-lp150.2.12 is installed
  • OR php7-opcache-7.2.5-lp150.2.12 is installed
  • OR php7-openssl-7.2.5-lp150.2.12 is installed
  • OR php7-pcntl-7.2.5-lp150.2.12 is installed
  • OR php7-pdo-7.2.5-lp150.2.12 is installed
  • OR php7-pear-7.2.5-lp150.2.12 is installed
  • OR php7-pear-Archive_Tar-7.2.5-lp150.2.12 is installed
  • OR php7-pgsql-7.2.5-lp150.2.12 is installed
  • OR php7-phar-7.2.5-lp150.2.12 is installed
  • OR php7-posix-7.2.5-lp150.2.12 is installed
  • OR php7-readline-7.2.5-lp150.2.12 is installed
  • OR php7-shmop-7.2.5-lp150.2.12 is installed
  • OR php7-snmp-7.2.5-lp150.2.12 is installed
  • OR php7-soap-7.2.5-lp150.2.12 is installed
  • OR php7-sockets-7.2.5-lp150.2.12 is installed
  • OR php7-sodium-7.2.5-lp150.2.12 is installed
  • OR php7-sqlite-7.2.5-lp150.2.12 is installed
  • OR php7-sysvmsg-7.2.5-lp150.2.12 is installed
  • OR php7-sysvsem-7.2.5-lp150.2.12 is installed
  • OR php7-sysvshm-7.2.5-lp150.2.12 is installed
  • OR php7-tidy-7.2.5-lp150.2.12 is installed
  • OR php7-tokenizer-7.2.5-lp150.2.12 is installed
  • OR php7-wddx-7.2.5-lp150.2.12 is installed
  • OR php7-xmlreader-7.2.5-lp150.2.12 is installed
  • OR php7-xmlrpc-7.2.5-lp150.2.12 is installed
  • OR php7-xmlwriter-7.2.5-lp150.2.12 is installed
  • OR php7-xsl-7.2.5-lp150.2.12 is installed
  • OR php7-zip-7.2.5-lp150.2.12 is installed
  • OR php7-zlib-7.2.5-lp150.2.12 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • kernel-firmware-20190618-lp151.2.6 is installed
  • OR ucode-amd-20190618-lp151.2.6 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • postgresql10-10.14-lp152.2.6 is installed
  • OR postgresql10-contrib-10.14-lp152.2.6 is installed
  • OR postgresql10-devel-10.14-lp152.2.6 is installed
  • OR postgresql10-docs-10.14-lp152.2.6 is installed
  • OR postgresql10-plperl-10.14-lp152.2.6 is installed
  • OR postgresql10-plpython-10.14-lp152.2.6 is installed
  • OR postgresql10-pltcl-10.14-lp152.2.6 is installed
  • OR postgresql10-server-10.14-lp152.2.6 is installed
  • OR postgresql10-test-10.14-lp152.2.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • apache2-2.4.23-29.6 is installed
  • OR apache2-doc-2.4.23-29.6 is installed
  • OR apache2-example-pages-2.4.23-29.6 is installed
  • OR apache2-prefork-2.4.23-29.6 is installed
  • OR apache2-utils-2.4.23-29.6 is installed
  • OR apache2-worker-2.4.23-29.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libjpeg-turbo-1.5.3-31.19 is installed
  • OR libjpeg62-62.2.0-31.19 is installed
  • OR libjpeg62-32bit-62.2.0-31.19 is installed
  • OR libjpeg62-turbo-1.5.3-31.19 is installed
  • OR libjpeg8-8.1.2-31.19 is installed
  • OR libjpeg8-32bit-8.1.2-31.19 is installed
  • OR libturbojpeg0-8.1.2-31.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • gvim-7.4.326-17.6 is installed
  • OR vim-7.4.326-17.6 is installed
  • OR vim-data-7.4.326-17.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_175-94_79-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_23-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libgcrypt-1.6.1-16.62 is installed
  • OR libgcrypt20-1.6.1-16.62 is installed
  • OR libgcrypt20-32bit-1.6.1-16.62 is installed
  • OR libgcrypt20-hmac-1.6.1-16.62 is installed
  • OR libgcrypt20-hmac-32bit-1.6.1-16.62 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND SuSEfirewall2-3.6.312.333-3.13 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • apache2-2.4.23-29.54 is installed
  • OR apache2-doc-2.4.23-29.54 is installed
  • OR apache2-example-pages-2.4.23-29.54 is installed
  • OR apache2-prefork-2.4.23-29.54 is installed
  • OR apache2-utils-2.4.23-29.54 is installed
  • OR apache2-worker-2.4.23-29.54 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • libX11-1.6.2-12.12 is installed
  • OR libX11-6-1.6.2-12.12 is installed
  • OR libX11-6-32bit-1.6.2-12.12 is installed
  • OR libX11-data-1.6.2-12.12 is installed
  • OR libX11-xcb1-1.6.2-12.12 is installed
  • OR libX11-xcb1-32bit-1.6.2-12.12 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • grafana-4.5.1-4.3 is installed
  • OR kafka-0.9.0.1-5.3 is installed
  • OR logstash-2.4.1-5.4 is installed
  • OR openstack-monasca-installer-20180622_15.06-3.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • ruby2.1-rubygem-loofah-2.0.2-3.8 is installed
  • OR rubygem-loofah-2.0.2-3.8 is installed
    • BACK