Oval Definition:oval:org.opensuse.security:def:4843
Revision Date:2020-12-02Version:1
Title:Security update for apache2 (Important)
Description:

This update for apache2 fixes the following issues:

Security issues fixed:

- CVE-2019-9517: Fixed HTTP/2 implementations that are vulnerable to unconstrained interal data buffering (bsc#1145575). - CVE-2019-10081: Fixed mod_http2 that is vulnerable to memory corruption on early pushes (bsc#1145742). - CVE-2019-10082: Fixed mod_http2 that is vulnerable to read-after-free in h2 connection shutdown (bsc#1145741). - CVE-2019-10092: Fixed limited cross-site scripting in mod_proxy (bsc#1145740). - CVE-2019-10097: Fixed mod_remoteip stack buffer overflow and NULL pointer dereference (bsc#1145739). - CVE-2019-10098: Fixed mod_rewrite configuration vulnerablility to open redirect (bsc#1145738).
Family:unixClass:patch
Status:Reference(s):1065729
1125230
1140683
1144348
1144352
1145575
1145738
1145739
1145740
1145741
1145742
1149742
1154091
1159670
1163927
1167631
1171862
1172538
1174748
1175520
1175987
1176024
1176294
1176397
1176400
1176409
1176412
1176733
1176946
1177027
1177340
1177511
1177685
1177724
1177725
1177867
1177914
1178319
1178361
1178362
1178485
CVE-2009-0946
CVE-2010-2497
CVE-2010-2529
CVE-2010-2805
CVE-2010-2947
CVE-2010-3053
CVE-2010-3054
CVE-2010-3311
CVE-2010-3814
CVE-2011-0226
CVE-2012-2417
CVE-2012-5668
CVE-2012-5669
CVE-2012-5670
CVE-2013-1445
CVE-2018-15587
CVE-2019-10081
CVE-2019-10082
CVE-2019-10092
CVE-2019-10097
CVE-2019-10098
CVE-2019-14491
CVE-2019-14492
CVE-2019-14559
CVE-2019-15939
CVE-2019-9517
CVE-2020-12351
CVE-2020-12352
CVE-2020-12823
CVE-2020-14392
CVE-2020-14393
CVE-2020-15999
CVE-2020-16846
CVE-2020-17490
CVE-2020-1752
CVE-2020-25592
CVE-2020-25645
CVE-2020-26117
SUSE-SU-2019:1266-1
SUSE-SU-2019:2237-1
SUSE-SU-2019:3192-1
SUSE-SU-2020:0820-1
SUSE-SU-2020:1125-1
SUSE-SU-2020:1930-1
SUSE-SU-2020:2645-1
SUSE-SU-2020:2882-1
SUSE-SU-2020:2972-1
SUSE-SU-2020:2995-1
SUSE-SU-2020:3244-1
Platform(s):SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Toolchain 12
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 5
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND python-pycrypto-2.6.1-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • libgcrypt11-1.5.0-0.15.2 is installed
  • OR libgcrypt11-32bit-1.5.0-0.15.2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND ft2demos-2.5.3-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • cron-4.2-58 is installed
  • OR cronie-1.4.11-58 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • at-3.1.14-7 is installed
  • OR libQtWebKit4-4.8.6+2.3.3-3 is installed
  • OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed
  • OR libbonobo-2.32.1-16 is installed
  • OR libbonobo-32bit-2.32.1-16 is installed
  • OR libbonobo-lang-2.32.1-16 is installed
  • OR libkde4-4.12.0-7 is installed
  • OR libkde4-32bit-4.12.0-7 is installed
  • OR libkdecore4-4.12.0-7 is installed
  • OR libkdecore4-32bit-4.12.0-7 is installed
  • OR libksuseinstall1-4.12.0-7 is installed
  • OR libksuseinstall1-32bit-4.12.0-7 is installed
  • OR libnetpbm11-10.66.3-4 is installed
  • OR libnetpbm11-32bit-10.66.3-4 is installed
  • OR netpbm-10.66.3-4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • bzip2-1.0.6-29 is installed
  • OR libbz2-1-1.0.6-29 is installed
  • OR libbz2-1-32bit-1.0.6-29 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 is installed
  • AND Package Information
  • conntrack-tools-1.4.2-5.2 is installed
  • OR libnetfilter_cthelper-1.0.0-7.1 is installed
  • OR libnetfilter_cthelper0-1.0.0-7.1 is installed
  • OR libnetfilter_cttimeout-1.0.0-9.1 is installed
  • OR libnetfilter_cttimeout1-1.0.0-9.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP1 is installed
  • AND Package Information
  • libpacemaker3-1.1.13-20.1 is installed
  • OR pacemaker-1.1.13-20.1 is installed
  • OR pacemaker-cli-1.1.13-20.1 is installed
  • OR pacemaker-cts-1.1.13-20.1 is installed
  • OR pacemaker-remote-1.1.13-20.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND conntrack-tools-1.4.2-5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND Package Information
  • libpacemaker3-1.1.16-4 is installed
  • OR pacemaker-1.1.16-4 is installed
  • OR pacemaker-cli-1.1.16-4 is installed
  • OR pacemaker-cts-1.1.16-4 is installed
  • OR pacemaker-remote-1.1.16-4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND libpcreposix0-8.39-8.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP5 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-120 is installed
  • OR dlm-kmp-default-4.12.14-120 is installed
  • OR gfs2-kmp-default-4.12.14-120 is installed
  • OR ocfs2-kmp-default-4.12.14-120 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • MozillaFirefox-68.1.0-109.92 is installed
  • OR MozillaFirefox-translations-common-68.1.0-109.92 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_39-47-default-1-2.1 is installed
  • OR kgraft-patch-3_12_39-47-xen-1-2.1 is installed
  • OR kgraft-patch-SLE12_Update_4-1-2.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • apache2-2.4.33-3.21 is installed
  • OR apache2-devel-2.4.33-3.21 is installed
  • OR apache2-doc-2.4.33-3.21 is installed
  • OR apache2-prefork-2.4.33-3.21 is installed
  • OR apache2-utils-2.4.33-3.21 is installed
  • OR apache2-worker-2.4.33-3.21 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed
  • AND Package Information
  • perl-5.18.2-12.20 is installed
  • OR perl-32bit-5.18.2-12.20 is installed
  • OR perl-base-5.18.2-12.20 is installed
  • OR perl-doc-5.18.2-12.20 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND libarchive2-2.5.5-5.19 is installed
  • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • gnutls-2.4.1-24.39.51.1 is installed
  • OR libgnutls-extra26-2.4.1-24.39.51.1 is installed
  • OR libgnutls26-2.4.1-24.39.51.1 is installed
  • OR libgnutls26-32bit-2.4.1-24.39.51.1 is installed
  • OR libgnutls26-x86-2.4.1-24.39.51.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • gnutls-2.4.1-24.39.51.1 is installed
  • OR libgnutls-extra26-2.4.1-24.39.51.1 is installed
  • OR libgnutls26-2.4.1-24.39.51.1 is installed
  • OR libgnutls26-32bit-2.4.1-24.39.51.1 is installed
  • OR libgnutls26-x86-2.4.1-24.39.51.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • NetworkManager-0.7.1_git20090811-3.28.2 is installed
  • OR NetworkManager-glib-0.7.1_git20090811-3.28.2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND mailx-12.5-22.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND p7zip-9.20.1-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-28 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • apache2-mod_apparmor-2.8.2-49 is installed
  • OR apparmor-docs-2.8.2-49 is installed
  • OR apparmor-parser-2.8.2-49 is installed
  • OR apparmor-profiles-2.8.2-49 is installed
  • OR apparmor-utils-2.8.2-49 is installed
  • OR libapparmor1-2.8.2-49 is installed
  • OR libapparmor1-32bit-2.8.2-49 is installed
  • OR pam_apparmor-2.8.2-49 is installed
  • OR pam_apparmor-32bit-2.8.2-49 is installed
  • OR perl-apparmor-2.8.2-49 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND apache2-mod_perl-2.0.8-11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • apache2-2.4.10-14.17.1 is installed
  • OR apache2-doc-2.4.10-14.17.1 is installed
  • OR apache2-example-pages-2.4.10-14.17.1 is installed
  • OR apache2-prefork-2.4.10-14.17.1 is installed
  • OR apache2-utils-2.4.10-14.17.1 is installed
  • OR apache2-worker-2.4.10-14.17.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • kernel-default-4.4.21-84 is installed
  • OR kernel-default-base-4.4.21-84 is installed
  • OR kernel-default-devel-4.4.21-84 is installed
  • OR kernel-devel-4.4.21-84 is installed
  • OR kernel-macros-4.4.21-84 is installed
  • OR kernel-source-4.4.21-84 is installed
  • OR kernel-syms-4.4.21-84 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND perl-DBI-1.639-3.8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND Package Information
  • openldap2-2.4.26-0.35.1 is installed
  • OR openldap2-back-perl-2.4.26-0.35.1 is installed
  • OR openldap2-client-2.4.26-0.35.1 is installed
  • OR openldap2-devel-2.4.26-0.35.1 is installed
  • OR openldap2-devel-32bit-2.4.26-0.35.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • glibc-2.11.3-17.102.1 is installed
  • OR glibc-html-2.11.3-17.102.1 is installed
  • OR glibc-info-2.11.3-17.102.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND Package Information
  • libpcp3-3.6.10-4 is installed
  • OR pcp-3.6.10-4 is installed
  • OR pcp-import-iostat2pcp-3.6.10-4 is installed
  • OR pcp-import-mrtg2pcp-3.6.10-4 is installed
  • OR pcp-import-sar2pcp-3.6.10-4 is installed
  • OR pcp-import-sheet2pcp-3.6.10-4 is installed
  • OR perl-PCP-LogImport-3.6.10-4 is installed
  • OR perl-PCP-LogSummary-3.6.10-4 is installed
  • OR perl-PCP-MMV-3.6.10-4 is installed
  • OR perl-PCP-PMDA-3.6.10-4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND Package Information
  • ant-1.9.4-1 is installed
  • OR ant-jmf-1.9.4-1 is installed
  • OR ant-scripts-1.9.4-1 is installed
  • OR ant-swing-1.9.4-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND Package Information
  • ant-1.9.4-1 is installed
  • OR ant-jmf-1.9.4-1 is installed
  • OR ant-scripts-1.9.4-1 is installed
  • OR ant-swing-1.9.4-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • evolution-3.26.6-4.3 is installed
  • OR evolution-devel-3.26.6-4.3 is installed
  • OR evolution-lang-3.26.6-4.3 is installed
  • OR evolution-plugin-bogofilter-3.26.6-4.3 is installed
  • OR evolution-plugin-pst-import-3.26.6-4.3 is installed
  • OR evolution-plugin-spamassassin-3.26.6-4.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • libopencv3_3-3.3.1-6.6 is installed
  • OR opencv-3.3.1-6.6 is installed
  • OR opencv-devel-3.3.1-6.6 is installed
  • BACK