Oval Definition:
oval:org.opensuse.security:def:125559
Revision Date
:
2021-06-17
Version
:
1
Title
:
Security update for apache2 (Important)
Description
:
This update for apache2 fixes the following issues:
- fixed CVE-2021-30641 [bsc#1187174]: MergeSlashes regression - fixed CVE-2021-31618 [bsc#1186924]: NULL pointer dereference on specially crafted HTTP/2 request - fixed CVE-2020-35452 [bsc#1186922]: Single zero byte stack overflow in mod_auth_digest - fixed CVE-2021-26690 [bsc#1186923]: mod_session NULL pointer dereference in parser - fixed CVE-2021-26691 [bsc#1187017]: Heap overflow in mod_session
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1186922
1186923
1186924
1187017
1187174
CVE-2020-35452
CVE-2021-26690
CVE-2021-26691
CVE-2021-30641
CVE-2021-31618
SUSE-SU-2021:2006-1
Platform(s)
:
SUSE Linux Enterprise Server for SAP Applications 12 SP4
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
AND
Package Information
apache2-2.4.23-29.74.1 is installed
OR
apache2-doc-2.4.23-29.74.1 is installed
OR
apache2-example-pages-2.4.23-29.74.1 is installed
OR
apache2-prefork-2.4.23-29.74.1 is installed
OR
apache2-utils-2.4.23-29.74.1 is installed
OR
apache2-worker-2.4.23-29.74.1 is installed
BACK