Oval Definition:	oval:org.opensuse.security:def:4865
Revision Date: 2020-12-02 Version: 1 Title: Security update for apache2 (Important) Description: This update for apache2 fixes the following issues: - CVE-2020-1934: mod_proxy_ftp may use uninitialized memory when proxying to a malicious FTP server (bsc#1168404). - CVE-2020-1927: mod_rewrite configurations vulnerable to open redirect (bsc#1168407). - CVE-2020-1938: mod_proxy_ajp: Add 'secret' parameter to proxy workers to implement legacy AJP13 authentication (bsc#1169066). Family: unix Class: patch Status: Reference(s): 1051510 1061210 1062631 1065729 1071995 1085030 1105173 1111666 1112178 1113956 1114279 1118935 1144333 1144522 1146025 1148643 1148868 1149943 1149944 1150660 1151927 1152107 1152624 1152684 1157627 1158983 1159058 1160968 1161016 1161167 1162002 1162063 1162972 1163309 1163985 1165849 1166985 1167104 1168081 1168404 1168407 1168959 1169066 1169194 1169514 1169771 1169795 1170011 1170442 1170592 1170617 1170618 1171124 1171424 1171529 1171530 1171558 1171732 1171739 1171743 1171753 1171759 1171835 1171841 1171868 1171904 1171924 1172053 1172177 1172182 1172184 1172186 1172189 1172247 1172257 1172344 1172458 1172484 1172537 1172538 1172687 1172719 1172759 1172775 1172781 1172782 1172783 1172795 1172796 1172871 1172872 1172999 1173060 1173074 1173146 1173265 1173280 1173284 1173351 1173428 1173514 1173567 1173573 1173659 1173746 1173818 1173820 1173825 1173826 1173833 1173838 1173839 1173845 1173857 1174113 1174115 1174122 1174123 1174186 1174187 1174296 1174343 1174356 1174409 1174438 1174462 1174543 1178512 CVE-2006-2607 CVE-2009-1886 CVE-2009-1888 CVE-2009-2813 CVE-2009-2906 CVE-2009-2948 CVE-2010-0424 CVE-2010-0547 CVE-2010-0728 CVE-2010-0787 CVE-2010-0926 CVE-2010-1635 CVE-2010-1642 CVE-2010-2063 CVE-2010-2529 CVE-2010-3069 CVE-2011-0719 CVE-2011-2522 CVE-2011-2694 CVE-2012-0817 CVE-2012-0870 CVE-2012-1182 CVE-2012-2111 CVE-2012-6150 CVE-2013-0172 CVE-2013-0213 CVE-2013-0214 CVE-2013-0454 CVE-2013-1863 CVE-2013-2063 CVE-2013-4124 CVE-2013-4408 CVE-2013-4475 CVE-2013-4476 CVE-2013-4496 CVE-2013-6442 CVE-2014-0178 CVE-2014-0239 CVE-2014-0244 CVE-2014-3493 CVE-2014-3560 CVE-2019-16746 CVE-2019-16770 CVE-2019-20810 CVE-2019-20908 CVE-2019-4732 CVE-2019-5418 CVE-2019-5419 CVE-2019-5420 CVE-2019-9853 CVE-2019-9854 CVE-2019-9855 CVE-2020-0305 CVE-2020-0569 CVE-2020-10766 CVE-2020-10767 CVE-2020-10768 CVE-2020-10769 CVE-2020-10773 CVE-2020-10781 CVE-2020-11076 CVE-2020-11077 CVE-2020-12771 CVE-2020-12802 CVE-2020-12803 CVE-2020-12888 CVE-2020-13974 CVE-2020-14416 CVE-2020-15169 CVE-2020-15393 CVE-2020-15780 CVE-2020-1720 CVE-2020-1927 CVE-2020-1934 CVE-2020-1938 CVE-2020-2583 CVE-2020-2593 CVE-2020-2604 CVE-2020-2659 CVE-2020-28196 CVE-2020-5247 CVE-2020-5249 CVE-2020-5267 CVE-2020-8164 CVE-2020-8165 CVE-2020-8166 CVE-2020-8167 CVE-2020-8184 CVE-2020-8185 SUSE-SU-2018:4215-1 SUSE-SU-2019:2686-1 SUSE-SU-2020:0349-1 SUSE-SU-2020:0466-1 SUSE-SU-2020:1126-1 SUSE-SU-2020:2107-1 SUSE-SU-2020:2149-1 SUSE-SU-2020:2235-1 SUSE-SU-2020:3147-1 SUSE-SU-2020:3375-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND openssl-certs-1.95-0.4.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information cron-4.2-55 is installed OR cronie-1.4.11-55 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-9 is installed OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information augeas-1.2.0-10 is installed OR augeas-lenses-1.2.0-10 is installed OR libaugeas0-1.2.0-10 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information ceph-common-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR libcephfs2-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR librados2-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR libradosstriper1-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR librbd1-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR librgw2-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-cephfs-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-rados-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-rbd-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-rgw-12.2.8+git.1536505967.080f2248ff-2.15 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND Package Information conntrack-tools-1.4.2-5.2 is installed OR libnetfilter_cthelper-1.0.0-7.1 is installed OR libnetfilter_cthelper0-1.0.0-7.1 is installed OR libnetfilter_cttimeout-1.0.0-9.1 is installed OR libnetfilter_cttimeout1-1.0.0-9.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information ctdb-4.2.4-26.2 is installed OR samba-4.2.4-26.2 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND ctdb-4.4.2-29 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information ctdb-4.6.7+git.51.327af8d0a11-3.12.1 is installed OR samba-4.6.7+git.51.327af8d0a11-3.12.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND ctdb-4.6.16+git.124.aee309c5c18-3.32 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND Package Information libpacemaker3-1.1.21+20190809.bf34b44fa-1 is installed OR pacemaker-1.1.21+20190809.bf34b44fa-1 is installed OR pacemaker-cli-1.1.21+20190809.bf34b44fa-1 is installed OR pacemaker-cts-1.1.21+20190809.bf34b44fa-1 is installed OR pacemaker-remote-1.1.21+20190809.bf34b44fa-1 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_32-33-default-2-3.1 is installed OR kgraft-patch-3_12_32-33-xen-2-3.1 is installed OR kgraft-patch-3_12_36-38-default-2-3.1 is installed OR kgraft-patch-3_12_36-38-xen-2-3.1 is installed OR kgraft-patch-SLE12_Update_1-2-3.1 is installed OR kgraft-patch-SLE12_Update_2-2-3.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information containerd-0.2.5+gitr569_2a5e70c-15.3 is installed OR docker-1.12.6-87.2 is installed OR runc-0.1.1+gitr2819_50a19c6-15.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information apache2-2.4.33-3.30 is installed OR apache2-devel-2.4.33-3.30 is installed OR apache2-doc-2.4.33-3.30 is installed OR apache2-prefork-2.4.33-3.30 is installed OR apache2-utils-2.4.33-3.30 is installed OR apache2-worker-2.4.33-3.30 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information xen-4.7.6_06-43.54 is installed OR xen-doc-html-4.7.6_06-43.54 is installed OR xen-libs-4.7.6_06-43.54 is installed OR xen-libs-32bit-4.7.6_06-43.54 is installed OR xen-tools-4.7.6_06-43.54 is installed OR xen-tools-domU-4.7.6_06-43.54 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information libpython2_6-1_0-2.6.0-8.12.2 is installed OR libpython2_6-1_0-32bit-2.6.0-8.12.2 is installed OR libpython2_6-1_0-x86-2.6.0-8.12.2 is installed OR python-base-2.6.0-8.12.2 is installed OR python-base-32bit-2.6.0-8.12.2 is installed OR python-base-x86-2.6.0-8.12.2 is installed OR python-xml-2.6.0-8.12.2 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information MozillaFirefox-17.0.4esr-0.10.42 is installed OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3-LTSS is installed AND Package Information java-1_6_0-ibm-1.6.0_sr16.35-78.2 is installed OR java-1_6_0-ibm-alsa-1.6.0_sr16.35-78.2 is installed OR java-1_6_0-ibm-devel-1.6.0_sr16.35-78.2 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr16.35-78.2 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr16.35-78.2 is installed OR java-1_6_0-ibm-plugin-1.6.0_sr16.35-78.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND tcpdump-4.5.1-4.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND python-imaging-1.1.7-21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache2-2.4.23-28 is installed OR apache2-doc-2.4.23-28 is installed OR apache2-example-pages-2.4.23-28 is installed OR apache2-prefork-2.4.23-28 is installed OR apache2-utils-2.4.23-28 is installed OR apache2-worker-2.4.23-28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_60-52_54-default-2-2.2 is installed OR kgraft-patch-3_12_60-52_54-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_15-2-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information jasper-1.900.14-181 is installed OR libjasper1-1.900.14-181 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information rmt-server-2.6.5-3.34 is installed OR rmt-server-config-2.6.5-3.34 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND python-httplib2-0.7.4-0.7.8.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND kernel-docs-3.0.101-77.2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND libtool-2.4.2-14 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information ImageMagick-6.8.8.1-8 is installed OR ImageMagick-devel-6.8.8.1-8 is installed OR libMagick++-6_Q16-3-6.8.8.1-8 is installed OR libMagick++-devel-6.8.8.1-8 is installed OR perl-PerlMagick-6.8.8.1-8 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information DirectFB-devel-1.7.1-6 is installed OR lib++dfb-devel-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND aaa_base-malloccheck-13.2+git20140911.61c1681-36 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND enigmail-2.0.9-3.13 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.48 is installed OR kernel-default-extra-4.12.14-197.48 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information libreoffice-6.4.5.2-13.3 is installed OR libreoffice-base-6.4.5.2-13.3 is installed OR libreoffice-base-drivers-postgresql-6.4.5.2-13.3 is installed OR libreoffice-branding-upstream-6.4.5.2-13.3 is installed OR libreoffice-calc-6.4.5.2-13.3 is installed OR libreoffice-calc-extensions-6.4.5.2-13.3 is installed OR libreoffice-draw-6.4.5.2-13.3 is installed OR libreoffice-filters-optional-6.4.5.2-13.3 is installed OR libreoffice-gnome-6.4.5.2-13.3 is installed OR libreoffice-gtk3-6.4.5.2-13.3 is installed OR libreoffice-icon-themes-6.4.5.2-13.3 is installed OR libreoffice-impress-6.4.5.2-13.3 is installed OR libreoffice-l10n-af-6.4.5.2-13.3 is installed OR libreoffice-l10n-ar-6.4.5.2-13.3 is installed OR libreoffice-l10n-as-6.4.5.2-13.3 is installed OR libreoffice-l10n-bg-6.4.5.2-13.3 is installed OR libreoffice-l10n-bn-6.4.5.2-13.3 is installed OR libreoffice-l10n-br-6.4.5.2-13.3 is installed OR libreoffice-l10n-ca-6.4.5.2-13.3 is installed OR libreoffice-l10n-cs-6.4.5.2-13.3 is installed OR libreoffice-l10n-cy-6.4.5.2-13.3 is installed OR libreoffice-l10n-da-6.4.5.2-13.3 is installed OR libreoffice-l10n-de-6.4.5.2-13.3 is installed OR libreoffice-l10n-dz-6.4.5.2-13.3 is installed OR libreoffice-l10n-el-6.4.5.2-13.3 is installed OR libreoffice-l10n-en-6.4.5.2-13.3 is installed OR libreoffice-l10n-eo-6.4.5.2-13.3 is installed OR libreoffice-l10n-es-6.4.5.2-13.3 is installed OR libreoffice-l10n-et-6.4.5.2-13.3 is installed OR libreoffice-l10n-eu-6.4.5.2-13.3 is installed OR libreoffice-l10n-fa-6.4.5.2-13.3 is installed OR libreoffice-l10n-fi-6.4.5.2-13.3 is installed OR libreoffice-l10n-fr-6.4.5.2-13.3 is installed OR libreoffice-l10n-ga-6.4.5.2-13.3 is installed OR libreoffice-l10n-gl-6.4.5.2-13.3 is installed OR libreoffice-l10n-gu-6.4.5.2-13.3 is installed OR libreoffice-l10n-he-6.4.5.2-13.3 is installed OR libreoffice-l10n-hi-6.4.5.2-13.3 is installed OR libreoffice-l10n-hr-6.4.5.2-13.3 is installed OR libreoffice-l10n-hu-6.4.5.2-13.3 is installed OR libreoffice-l10n-it-6.4.5.2-13.3 is installed OR libreoffice-l10n-ja-6.4.5.2-13.3 is installed OR libreoffice-l10n-kk-6.4.5.2-13.3 is installed OR libreoffice-l10n-kn-6.4.5.2-13.3 is installed OR libreoffice-l10n-ko-6.4.5.2-13.3 is installed OR libreoffice-l10n-lt-6.4.5.2-13.3 is installed OR libreoffice-l10n-lv-6.4.5.2-13.3 is installed OR libreoffice-l10n-mai-6.4.5.2-13.3 is installed OR libreoffice-l10n-ml-6.4.5.2-13.3 is installed OR libreoffice-l10n-mr-6.4.5.2-13.3 is installed OR libreoffice-l10n-nb-6.4.5.2-13.3 is installed OR libreoffice-l10n-nl-6.4.5.2-13.3 is installed OR libreoffice-l10n-nn-6.4.5.2-13.3 is installed OR libreoffice-l10n-nr-6.4.5.2-13.3 is installed OR libreoffice-l10n-nso-6.4.5.2-13.3 is installed OR libreoffice-l10n-or-6.4.5.2-13.3 is installed OR libreoffice-l10n-pa-6.4.5.2-13.3 is installed OR libreoffice-l10n-pl-6.4.5.2-13.3 is installed OR libreoffice-l10n-pt_BR-6.4.5.2-13.3 is installed OR libreoffice-l10n-pt_PT-6.4.5.2-13.3 is installed OR libreoffice-l10n-ro-6.4.5.2-13.3 is installed OR libreoffice-l10n-ru-6.4.5.2-13.3 is installed OR libreoffice-l10n-si-6.4.5.2-13.3 is installed OR libreoffice-l10n-sk-6.4.5.2-13.3 is installed OR libreoffice-l10n-sl-6.4.5.2-13.3 is installed OR libreoffice-l10n-sr-6.4.5.2-13.3 is installed OR libreoffice-l10n-ss-6.4.5.2-13.3 is installed OR libreoffice-l10n-st-6.4.5.2-13.3 is installed OR libreoffice-l10n-sv-6.4.5.2-13.3 is installed OR libreoffice-l10n-ta-6.4.5.2-13.3 is installed OR libreoffice-l10n-te-6.4.5.2-13.3 is installed OR libreoffice-l10n-th-6.4.5.2-13.3 is installed OR libreoffice-l10n-tn-6.4.5.2-13.3 is installed OR libreoffice-l10n-tr-6.4.5.2-13.3 is installed OR libreoffice-l10n-ts-6.4.5.2-13.3 is installed OR libreoffice-l10n-uk-6.4.5.2-13.3 is installed OR libreoffice-l10n-ve-6.4.5.2-13.3 is installed OR libreoffice-l10n-xh-6.4.5.2-13.3 is installed OR libreoffice-l10n-zh_CN-6.4.5.2-13.3 is installed OR libreoffice-l10n-zh_TW-6.4.5.2-13.3 is installed OR libreoffice-l10n-zu-6.4.5.2-13.3 is installed OR libreoffice-mailmerge-6.4.5.2-13.3 is installed OR libreoffice-math-6.4.5.2-13.3 is installed OR libreoffice-officebean-6.4.5.2-13.3 is installed OR libreoffice-pyuno-6.4.5.2-13.3 is installed OR libreoffice-writer-6.4.5.2-13.3 is installed OR libreoffice-writer-extensions-6.4.5.2-13.3 is installed OR libreofficekit-6.4.5.2-13.3 is installed
BACK