Oval Definition:oval:org.opensuse.security:def:1682
Revision Date:2022-06-14Version:1
Title:Security update for apache2 (Important) (in QA)
Description:

This update for apache2 fixes the following issues:

- CVE-2022-26377: Fixed possible request smuggling in mod_proxy_ajp (bsc#1200338) - CVE-2022-28614: Fixed read beyond bounds via ap_rwrite() (bsc#1200340) - CVE-2022-28615: Fixed read beyond bounds in ap_strcmp_match() (bsc#1200341) - CVE-2022-29404: Fixed denial of service in mod_lua r:parsebody (bsc#1200345) - CVE-2022-30556: Fixed information disclosure in mod_lua with websockets (bsc#1200350) - CVE-2022-30522: Fixed mod_sed denial of service (bsc#1200352) - CVE-2022-31813: Fixed mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism (bsc#1200348)

This patch is currently in QA and not yet available for download.
Family:unixClass:patch
Status:Reference(s):1172021
1200338
1200340
1200341
1200345
1200348
1200350
1200352
CVE-2013-2062
CVE-2013-2882
CVE-2013-6639
CVE-2013-6640
CVE-2013-6668
CVE-2014-0224
CVE-2015-3193
CVE-2015-3194
CVE-2015-5380
CVE-2015-7384
CVE-2016-2086
CVE-2016-2178
CVE-2016-2183
CVE-2016-2216
CVE-2016-5172
CVE-2016-5325
CVE-2016-6304
CVE-2016-6306
CVE-2016-7052
CVE-2016-7099
CVE-2017-1000381
CVE-2017-11499
CVE-2017-14849
CVE-2017-14919
CVE-2017-15896
CVE-2017-15897
CVE-2017-3735
CVE-2017-3736
CVE-2017-3738
CVE-2018-0732
CVE-2018-1000168
CVE-2018-12115
CVE-2018-12116
CVE-2018-12121
CVE-2018-12122
CVE-2018-12123
CVE-2018-7158
CVE-2018-7159
CVE-2018-7160
CVE-2018-7161
CVE-2018-7167
CVE-2019-19956
CVE-2019-19956
CVE-2019-5737
CVE-2022-26377
CVE-2022-28614
CVE-2022-28615
CVE-2022-29404
CVE-2022-30522
CVE-2022-30556
CVE-2022-31813
SUSE-SU-2020:1532-1
Platform(s):SUSE Linux Enterprise Build System Kit 12 SP1
SUSE Linux Enterprise Build System Kit 12 SP2
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for CAP 15
SUSE Linux Enterprise Module for CAP 15 SP1
SUSE Linux Enterprise Module for Containers 15
SUSE Linux Enterprise Module for Containers 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15 SP3
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Development Tools 15 SP1
SUSE Linux Enterprise Module for High Performance Computing 15
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Server Applications 15 SP3
SUSE Linux Enterprise Module for Web Scripting 15 SP1
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Storage 7.1
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE Manager Proxy 4.2
SUSE Manager Retail Branch Server 4.2
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP1 is installed
  • AND Package Information
  • ghostscript-mini-9.15-6.1 is installed
  • OR ghostscript-mini-devel-9.15-6.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP2 is installed
  • AND Package Information
  • ghostscript-mini-9.15-17.1 is installed
  • OR ghostscript-mini-devel-9.15-17.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libmysqlclient18-10.0.21-1 is installed
  • OR libmysqlclient18-32bit-10.0.21-1 is installed
  • OR libmysqlclient_r18-10.0.21-1 is installed
  • OR libmysqlclient_r18-32bit-10.0.21-1 is installed
  • OR mariadb-10.0.21-1 is installed
  • OR mariadb-client-10.0.21-1 is installed
  • OR mariadb-errormessages-10.0.21-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • accountsservice-0.6.42-14 is installed
  • OR accountsservice-lang-0.6.42-14 is installed
  • OR libaccountsservice0-0.6.42-14 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • alsa-1.0.27.2-15 is installed
  • OR libasound2-1.0.27.2-15 is installed
  • OR libasound2-32bit-1.0.27.2-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP3 is installed
  • AND libXp6-32bit-1.0.3-1.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-150.38 is installed
  • OR dlm-kmp-default-4.12.14-150.38 is installed
  • OR gfs2-kmp-default-4.12.14-150.38 is installed
  • OR kernel-default-4.12.14-150.38 is installed
  • OR ocfs2-kmp-default-4.12.14-150.38 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Server Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND Package Information
  • apache2-devel-2.4.51-150200.3.48.1 is installed
  • OR apache2-doc-2.4.51-150200.3.48.1 is installed
  • OR apache2-worker-2.4.51-150200.3.48.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • libxml2-2.9.7-3.22 is installed
  • OR libxml2-2-2.9.7-3.22 is installed
  • OR libxml2-2-32bit-2.9.7-3.22 is installed
  • OR libxml2-devel-2.9.7-3.22 is installed
  • OR libxml2-tools-2.9.7-3.22 is installed
  • OR python-libxml2-python-2.9.7-3.22 is installed
  • OR python3-libxml2-python-2.9.7-3.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for CAP 15 is installed
  • AND cf-cli-6.43.0-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for CAP 15 SP1 is installed
  • AND cf-cli-6.43.0-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 is installed
  • AND Package Information
  • docker-18.09.6_ce-6.20 is installed
  • OR docker-bash-completion-18.09.6_ce-6.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 SP1 is installed
  • AND Package Information
  • docker-18.09.6_ce-6.20 is installed
  • OR docker-bash-completion-18.09.6_ce-6.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • libtiff5-32bit-4.0.9-5.9 is installed
  • OR tiff-4.0.9-5.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • libtag-devel-1.11.1-4.3 is installed
  • OR libtag_c0-1.11.1-4.3 is installed
  • OR taglib-1.11.1-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 is installed
  • AND Package Information
  • crash-7.2.1-3.2 is installed
  • OR crash-devel-7.2.1-3.2 is installed
  • OR crash-kmp-default-7.2.1_k4.12.14_23-3.2 is installed
  • OR lttng-modules-2.10.0-5.2 is installed
  • OR lttng-modules-kmp-default-2.10.0_k4.12.14_23-5.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed
  • AND Package Information
  • graphviz-addons-2.40.1-6.3 is installed
  • OR graphviz-perl-2.40.1-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 is installed
  • AND Package Information
  • libpmi0-17.11.13-6.15 is installed
  • OR libslurm32-17.11.13-6.15 is installed
  • OR perl-slurm-17.11.13-6.15 is installed
  • OR slurm-17.11.13-6.15 is installed
  • OR slurm-auth-none-17.11.13-6.15 is installed
  • OR slurm-config-17.11.13-6.15 is installed
  • OR slurm-devel-17.11.13-6.15 is installed
  • OR slurm-doc-17.11.13-6.15 is installed
  • OR slurm-lua-17.11.13-6.15 is installed
  • OR slurm-munge-17.11.13-6.15 is installed
  • OR slurm-node-17.11.13-6.15 is installed
  • OR slurm-pam_slurm-17.11.13-6.15 is installed
  • OR slurm-plugins-17.11.13-6.15 is installed
  • OR slurm-slurmdbd-17.11.13-6.15 is installed
  • OR slurm-sql-17.11.13-6.15 is installed
  • OR slurm-torque-17.11.13-6.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.19 is installed
  • OR reiserfs-kmp-default-4.12.14-25.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • java-11-openjdk-11.0.3.0-3.21 is installed
  • OR java-11-openjdk-accessibility-11.0.3.0-3.21 is installed
  • OR java-11-openjdk-demo-11.0.3.0-3.21 is installed
  • OR java-11-openjdk-devel-11.0.3.0-3.21 is installed
  • OR java-11-openjdk-headless-11.0.3.0-3.21 is installed
  • OR java-11-openjdk-javadoc-11.0.3.0-3.21 is installed
  • OR java-11-openjdk-jmods-11.0.3.0-3.21 is installed
  • OR java-11-openjdk-src-11.0.3.0-3.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed
  • AND Package Information
  • nodejs8-8.15.1-3.14 is installed
  • OR nodejs8-devel-8.15.1-3.14 is installed
  • OR nodejs8-docs-8.15.1-3.14 is installed
  • OR npm8-8.15.1-3.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND xlockmore-5.43-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND ant-1.9.4-1.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND dnsmasq-2.76-17.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • dracut-044-87.1 is installed
  • OR dracut-fips-044-87.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND krb5-devel-1.12.1-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND Package Information
  • freerdp-2.0.0~git.1463131968.4e66df7-11.69 is installed
  • OR libfreerdp2-2.0.0~git.1463131968.4e66df7-11.69 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.22 is installed
  • OR kernel-default-extra-4.12.14-25.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • MozillaThunderbird-60.7.0-3.33 is installed
  • OR MozillaThunderbird-translations-common-60.7.0-3.33 is installed
  • OR MozillaThunderbird-translations-other-60.7.0-3.33 is installed
    • BACK