OVAL Reference oval:org.opensuse.security:def:20102791

Oval Definition:

oval:org.opensuse.security:def:20102791

Revision Date:	2022-05-20	Version:	1
Title:	CVE-2010-2791
Description:	mod_proxy in httpd in Apache HTTP Server 2.2.9, when running on Unix, does not close the backend connection if a timeout occurs when reading a response from a persistent connection, which allows remote attackers to obtain a potentially sensitive response intended for a different client in opportunistic circumstances via a normal HTTP request. NOTE: this is the same issue as CVE-2010-2068, but for a different OS and set of affected versions.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	Mitre CVE-2010-2791 SUSE CVE-2010-2791
Platform(s):	SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3	Product(s):
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 is installed OR SUSE Linux Enterprise Server 11 SP1 is installed OR SUSE Linux Enterprise Server 11 SP2 is installed OR SUSE Linux Enterprise Server 11 SP3 is installed AND apache2 is affected