Oval Definition:oval:org.opensuse.security:def:100343
Revision Date:2021-10-26Version:1
Title: (Important)
Description:

This update for apache2 fixes the following issues:

- CVE-2021-40438: Fixed a SRF via a crafted request uri-path. (bsc#1190703) - CVE-2021-36160: Fixed an out-of-bounds read via a crafted request uri-path. (bsc#1190702) - CVE-2021-39275: Fixed an out-of-bounds write in ap_escape_quotes() via malicious input. (bsc#1190666) - CVE-2021-34798: Fixed a NULL pointer dereference via malformed requests. (bsc#1190669)
Family:unixClass:patch
Status:Reference(s):1181445
1181803
1181804
1188247
1188248
1188249
1188250
1188251
1188252
1188253
1188254
1188255
1188256
1190666
1190669
1190702
1190703
CVE-2020-8293
CVE-2020-8294
CVE-2020-8295
CVE-2021-32678
CVE-2021-32679
CVE-2021-32680
CVE-2021-32688
CVE-2021-32703
CVE-2021-32705
CVE-2021-32725
CVE-2021-32726
CVE-2021-32734
CVE-2021-32741
CVE-2021-34798
CVE-2021-36160
CVE-2021-39275
CVE-2021-40438
openSUSE-SU-2021:1068-1
Platform(s):Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
Product(s):
Definition Synopsis
  • Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM is installed
  • AND Package Information
  • apache2-2.4.43-3.32.1 is installed
  • OR apache2-prefork-2.4.43-3.32.1 is installed
  • OR apache2-utils-2.4.43-3.32.1 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND Package Information
  • nextcloud-20.0.11-bp153.2.3.1 is installed
  • OR nextcloud-apache-20.0.11-bp153.2.3.1 is installed
    • BACK