Oval Definition:oval:org.opensuse.security:def:1640
Revision Date:2021-10-26Version:1
Title:Security update for apache2 (Important)
Description:

This update for apache2 fixes the following issues:

- CVE-2021-40438: Fixed a SRF via a crafted request uri-path. (bsc#1190703) - CVE-2021-36160: Fixed an out-of-bounds read via a crafted request uri-path. (bsc#1190702) - CVE-2021-39275: Fixed an out-of-bounds write in ap_escape_quotes() via malicious input. (bsc#1190666) - CVE-2021-34798: Fixed a NULL pointer dereference via malformed requests. (bsc#1190669)
Family:unixClass:patch
Status:Reference(s):1076958
1138743
1152539
1154849
1156543
1190666
1190669
1190702
1190703
CVE-2006-7246
CVE-2015-2924
CVE-2016-0764
CVE-2016-2183
CVE-2017-15107
CVE-2017-15107
CVE-2018-1000135
CVE-2018-15688
CVE-2019-14834
CVE-2019-14834
CVE-2019-3816
CVE-2019-3833
CVE-2021-34798
CVE-2021-36160
CVE-2021-39275
CVE-2021-40438
SUSE-SU-2019:3189-1
SUSE-SU-2021:3522-1
Platform(s):SUSE Linux Enterprise Build System Kit 12
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Containers 15
SUSE Linux Enterprise Module for Containers 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15 SP3
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Module for Server Applications 15 SP3
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Storage 7.1
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 15
SUSE Manager Proxy 4.2
SUSE Manager Retail Branch Server 4.2
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 is installed
  • AND kernel-zfcpdump-3.12.51-52.31.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libXrender1-0.9.8-3 is installed
  • OR libXrender1-32bit-0.9.8-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • alsa-1.0.27.2-11 is installed
  • OR libasound2-1.0.27.2-11 is installed
  • OR libasound2-32bit-1.0.27.2-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP3 is installed
  • AND NetworkManager-1.22.10-3.7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-150.17 is installed
  • OR dlm-kmp-default-4.12.14-150.17 is installed
  • OR gfs2-kmp-default-4.12.14-150.17 is installed
  • OR kernel-default-4.12.14-150.17 is installed
  • OR ocfs2-kmp-default-4.12.14-150.17 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Server Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND Package Information
  • apache2-devel-2.4.43-3.32.1 is installed
  • OR apache2-doc-2.4.43-3.32.1 is installed
  • OR apache2-worker-2.4.43-3.32.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND dnsmasq-2.78-7.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 is installed
  • AND Package Information
  • docker-18.09.6_ce-6.20 is installed
  • OR docker-bash-completion-18.09.6_ce-6.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 SP1 is installed
  • AND Package Information
  • containerd-1.2.5-5.13 is installed
  • OR docker-18.09.6_ce-6.17 is installed
  • OR docker-bash-completion-18.09.6_ce-6.17 is installed
  • OR docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
  • OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed
  • OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • libhogweed4-32bit-3.4-4.3 is installed
  • OR libnettle-3.4-4.3 is installed
  • OR libnettle6-32bit-3.4-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • gvim-8.0.1568-5.3 is installed
  • OR vim-8.0.1568-5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 is installed
  • AND Package Information
  • crash-7.2.1-3.2 is installed
  • OR crash-devel-7.2.1-3.2 is installed
  • OR crash-kmp-default-7.2.1_k4.12.14_23-3.2 is installed
  • OR lttng-modules-2.10.0-5.2 is installed
  • OR lttng-modules-kmp-default-2.10.0_k4.12.14_23-5.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed
  • AND Package Information
  • python3-base-3.6.8-3.16 is installed
  • OR python3-tools-3.6.8-3.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • libsystemd0-mini-234-24.15 is installed
  • OR libudev-mini-devel-234-24.15 is installed
  • OR libudev-mini1-234-24.15 is installed
  • OR nss-myhostname-234-24.15 is installed
  • OR nss-mymachines-234-24.15 is installed
  • OR nss-systemd-234-24.15 is installed
  • OR systemd-234-24.15 is installed
  • OR systemd-logger-234-24.15 is installed
  • OR systemd-mini-234-24.15 is installed
  • OR systemd-mini-bash-completion-234-24.15 is installed
  • OR systemd-mini-container-mini-234-24.15 is installed
  • OR systemd-mini-coredump-mini-234-24.15 is installed
  • OR systemd-mini-devel-234-24.15 is installed
  • OR systemd-mini-sysvinit-234-24.15 is installed
  • OR udev-mini-234-24.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • libwsman-devel-2.6.7-3.6 is installed
  • OR libwsman3-2.6.7-3.6 is installed
  • OR openwsman-server-2.6.7-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • nodejs8-8.16.1-3.20 is installed
  • OR nodejs8-devel-8.16.1-3.20 is installed
  • OR nodejs8-docs-8.16.1-3.20 is installed
  • OR npm8-8.16.1-3.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • qemu-2.3.1-5 is installed
  • OR qemu-block-curl-2.3.1-5 is installed
  • OR qemu-block-rbd-2.3.1-5 is installed
  • OR qemu-guest-agent-2.3.1-5 is installed
  • OR qemu-ipxe-1.0.0-5 is installed
  • OR qemu-kvm-2.3.1-5 is installed
  • OR qemu-lang-2.3.1-5 is installed
  • OR qemu-ppc-2.3.1-5 is installed
  • OR qemu-s390-2.3.1-5 is installed
  • OR qemu-seabios-1.8.1-5 is installed
  • OR qemu-sgabios-8-5 is installed
  • OR qemu-tools-2.3.1-5 is installed
  • OR qemu-vgabios-1.8.1-5 is installed
  • OR qemu-x86-2.3.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND ant-1.9.4-1.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND ant-1.9.4-1.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND alsa-devel-1.0.27.2-11.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND lcms-1.19-17.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.6 is installed
  • OR kernel-default-extra-4.12.14-25.6 is installed
    • BACK