Oval Definition:oval:org.opensuse.security:def:1528
Revision Date:2022-06-14Version:1
Title:Security update for apache2 (Important) (in QA)
Description:

This update for apache2 fixes the following issues:

- CVE-2022-26377: Fixed possible request smuggling in mod_proxy_ajp (bsc#1200338) - CVE-2022-28614: Fixed read beyond bounds via ap_rwrite() (bsc#1200340) - CVE-2022-28615: Fixed read beyond bounds in ap_strcmp_match() (bsc#1200341) - CVE-2022-29404: Fixed denial of service in mod_lua r:parsebody (bsc#1200345) - CVE-2022-30556: Fixed information disclosure in mod_lua with websockets (bsc#1200350) - CVE-2022-30522: Fixed mod_sed denial of service (bsc#1200352) - CVE-2022-31813: Fixed mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism (bsc#1200348)

This patch is currently in QA and not yet available for download.
Family:unixClass:patch
Status:Reference(s):1105435
1200338
1200340
1200341
1200345
1200348
1200350
1200352
CVE-2010-3609
CVE-2016-4912
CVE-2016-7567
CVE-2018-1000654
CVE-2018-1000654
CVE-2018-1000845
CVE-2022-26377
CVE-2022-28614
CVE-2022-28615
CVE-2022-29404
CVE-2022-30522
CVE-2022-30556
CVE-2022-31813
SUSE-SU-2019:1372-2
Platform(s):SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Containers 15
SUSE Linux Enterprise Module for Containers 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Package Hub 15 SP3
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • vorbis-tools-1.4.0-16 is installed
  • OR vorbis-tools-lang-1.4.0-16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • DirectFB-1.7.1-4 is installed
  • OR lib++dfb-1_7-1-1.7.1-4 is installed
  • OR libdirectfb-1_7-1-1.7.1-4 is installed
  • OR libdirectfb-1_7-1-32bit-1.7.1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • AND avahi-autoipd-0.7-1.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • libtasn1-4.13-4.5 is installed
  • OR libtasn1-6-4.13-4.5 is installed
  • OR libtasn1-6-32bit-4.13-4.5 is installed
  • OR libtasn1-devel-4.13-4.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 is installed
  • AND Package Information
  • containerd-1.1.2-5.3 is installed
  • OR docker-18.06.1_ce-6.8 is installed
  • OR docker-bash-completion-18.06.1_ce-6.8 is installed
  • OR docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3 is installed
  • OR docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3 is installed
  • OR golang-github-docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 SP1 is installed
  • AND Package Information
  • docker-18.09.6_ce-6.20 is installed
  • OR docker-bash-completion-18.09.6_ce-6.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • exiv2-0.26-6.3 is installed
  • OR libexiv2-26-0.26-6.3 is installed
  • OR libexiv2-devel-0.26-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • libtag-devel-1.11.1-4.3 is installed
  • OR libtag_c0-1.11.1-4.3 is installed
  • OR taglib-1.11.1-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 is installed
  • AND Package Information
  • glibc-2.26-13.3 is installed
  • OR glibc-devel-32bit-2.26-13.3 is installed
  • OR glibc-devel-static-2.26-13.3 is installed
  • OR glibc-utils-2.26-13.3 is installed
  • OR glibc-utils-src-2.26-13.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.25 is installed
  • OR kernel-default-base-4.12.14-25.25 is installed
  • OR kernel-docs-4.12.14-25.25 is installed
  • OR kernel-docs-html-4.12.14-25.25 is installed
  • OR kernel-obs-qa-4.12.14-25.25 is installed
  • OR kselftests-kmp-default-4.12.14-25.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Package Hub 15 SP3 is installed
  • AND apache2-event-2.4.51-150200.3.48.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND openslp-server-2.0.0-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • dhcp-4.3.5-6.3 is installed
  • OR dhcp-relay-4.3.5-6.3 is installed
  • OR dhcp-server-4.3.5-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND libdmx1-1.1.3-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libtiff5-4.0.6-26.3 is installed
  • OR libtiff5-32bit-4.0.6-26.3 is installed
  • OR tiff-4.0.6-26.3 is installed
    • BACK