Oval Definition:oval:org.opensuse.security:def:100630
Revision Date:2021-06-22Version:1
Title: (Important)
Description:

This update for apache2 fixes the following issues:

- fixed CVE-2021-30641 [bsc#1187174]: MergeSlashes regression - fixed CVE-2021-31618 [bsc#1186924]: NULL pointer dereference on specially crafted HTTP/2 request - fixed CVE-2020-13950 [bsc#1187040]: mod_proxy NULL pointer dereference - fixed CVE-2020-35452 [bsc#1186922]: Single zero byte stack overflow in mod_auth_digest - fixed CVE-2021-26690 [bsc#1186923]: mod_session NULL pointer dereference in parser - fixed CVE-2021-26691 [bsc#1187017]: Heap overflow in mod_session
Family:unixClass:patch
Status:Reference(s):1186922
1186923
1186924
1187017
1187040
1187174
CVE-2017-14798
CVE-2020-13950
CVE-2020-35452
CVE-2021-26690
CVE-2021-26691
CVE-2021-30641
CVE-2021-31618
Platform(s):Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND postgresql-12-2.2 is installed
    • Definition Synopsis
  • Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE is installed
  • AND Package Information
  • apache2-2.4.43-3.22.1 is installed
  • OR apache2-prefork-2.4.43-3.22.1 is installed
  • OR apache2-utils-2.4.43-3.22.1 is installed
    • BACK