| Revision Date: | 2021-08-25 | Version: | 1 |
| Title: | Security update for jetty-minimal (Moderate) |
| Description: |
This update for jetty-minimal fixes the following issues:
- Update to version 9.4.43.v20210629 - CVE-2021-34429: URIs can be crafted using some encoded characters to access the content of the WEB-INF directory and/or bypass some security constraints. (bsc#1188438)
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1188438
CVE-2021-34429
SUSE-SU-2021:2838-1
|
| Platform(s): | SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Development Tools 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed AND Package Information
jetty-http-9.4.43-3.12.2 is installed
OR jetty-io-9.4.43-3.12.2 is installed
OR jetty-security-9.4.43-3.12.2 is installed
OR jetty-server-9.4.43-3.12.2 is installed
OR jetty-servlet-9.4.43-3.12.2 is installed
OR jetty-util-9.4.43-3.12.2 is installed
OR jetty-util-ajax-9.4.43-3.12.2 is installed
|