Oval Definition:	oval:org.opensuse.security:def:20190190
Revision Date: 2022-09-02 Version: 1 Title: CVE-2019-0190 Description: A bug exists in the way mod_ssl handled client renegotiations. A remote attacker could send a carefully crafted request that would cause mod_ssl to enter a loop leading to a denial of service. This bug can be only triggered with Apache HTTP Server version 2.4.37 when using OpenSSL version 1.1.1 or later, due to an interaction in changes to handling of renegotiation attempts. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2019-0190 SUSE CVE-2019-0190 Platform(s): SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 Product(s): Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND apache2 is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND apache2 is not affected OR apache2-doc is not affected OR apache2-example-pages is not affected OR apache2-prefork is not affected OR apache2-utils is not affected OR apache2-worker is not affected Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND apache2 is not affected Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND apache2 is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND apache2 is not affected OR apache2-doc is not affected OR apache2-example-pages is not affected OR apache2-prefork is not affected OR apache2-utils is not affected OR apache2-worker is not affected Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND apache2 is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND apache2 is not affected OR apache2-doc is not affected OR apache2-example-pages is not affected OR apache2-prefork is not affected OR apache2-utils is not affected OR apache2-worker is not affected Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND apache2 is not affected Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache2 is not affected
BACK