Oval Definition:	oval:org.opensuse.security:def:4920
Revision Date: 2020-12-02 Version: 1 Title: Security update for apache2-mod_auth_openidc (Moderate) Description: This update for apache2-mod_auth_openidc fixes the following issues: - CVE-2019-20479: Fixed an open redirect issue in URLs with slash and backslash (bsc#1164459). Family: unix Class: patch Status: Reference(s): 1027519 1047238 1050911 1051510 1054914 1055117 1056686 1060662 1061840 1061843 1064597 1064701 1065600 1065729 1066369 1071009 1071306 1078248 1082555 1085030 1085536 1085539 1086103 1087092 1089811 1090734 1091171 1093205 1102097 1104902 1106061 1106284 1106434 1108382 1112020 1112894 1112899 1112902 1112903 1112905 1112906 1112907 1113722 1114279 1114542 1116451 1118689 1119086 1120876 1120902 1120937 1121874 1123105 1123131 1123455 1123959 1124062 1124370 1124869 1127760 1127857 1128845 1129424 1129519 1129664 1130694 1131107 1131281 1131565 1133021 1133267 1134291 1134881 1134882 1135189 1135219 1135228 1135642 1135824 1135897 1136261 1137595 1137811 1137884 1138539 1139020 1139021 1139101 1139500 1140012 1140426 1140487 1141450 1141543 1141554 1142019 1142076 1142109 1142117 1142118 1142119 1142496 1142541 1142635 1142685 1142701 1142857 1143300 1143466 1143765 1143841 1143843 1144123 1144333 1144474 1144518 1144718 1144813 1144880 1144886 1144912 1144920 1144979 1145010 1145051 1145059 1145189 1145235 1145300 1145302 1145388 1145389 1145390 1145391 1145392 1145393 1145394 1145395 1145396 1145397 1145408 1145409 1145661 1145678 1145687 1145920 1145922 1145934 1145937 1145940 1145941 1145942 1146074 1146084 1146163 1146285 1146346 1146351 1146352 1146361 1146376 1146378 1146381 1146391 1146399 1146413 1146425 1146512 1146514 1146516 1146519 1146524 1146526 1146529 1146531 1146543 1146547 1146550 1146575 1146589 1146678 1146938 1148031 1148032 1148033 1148034 1148035 1148093 1148133 1148192 1148196 1148198 1148202 1148303 1148363 1148379 1148394 1148527 1148574 1148616 1148617 1148619 1148859 1148868 1149053 1149083 1149104 1149105 1149106 1149197 1149214 1149224 1149325 1149376 1149413 1149418 1149424 1149522 1149527 1149539 1149552 1149591 1149602 1149612 1149626 1149652 1149713 1149940 1149976 1150025 1150033 1150112 1150562 1150727 1150860 1150861 1150933 1164459 1168630 1168874 1176339 1176341 1176343 1176344 1176345 1176346 1176347 1176348 1176349 1176350 CVE-2009-1720 CVE-2009-1721 CVE-2009-1886 CVE-2009-1888 CVE-2009-2285 CVE-2009-2347 CVE-2009-2813 CVE-2009-2906 CVE-2009-2948 CVE-2010-0547 CVE-2010-0728 CVE-2010-0787 CVE-2010-1172 CVE-2010-2065 CVE-2010-2067 CVE-2010-2233 CVE-2010-2800 CVE-2010-2801 CVE-2010-2891 CVE-2010-4665 CVE-2011-0192 CVE-2011-1167 CVE-2012-1173 CVE-2012-1586 CVE-2012-2113 CVE-2012-3401 CVE-2012-4564 CVE-2013-0292 CVE-2013-1960 CVE-2013-1961 CVE-2013-4231 CVE-2013-4232 CVE-2013-4243 CVE-2013-4244 CVE-2014-3641 CVE-2017-18551 CVE-2018-14665 CVE-2018-16858 CVE-2018-18511 CVE-2018-20976 CVE-2018-21008 CVE-2019-10207 CVE-2019-11691 CVE-2019-11692 CVE-2019-11693 CVE-2019-11694 CVE-2019-11698 CVE-2019-11703 CVE-2019-11704 CVE-2019-11705 CVE-2019-11706 CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-14835 CVE-2019-15030 CVE-2019-15031 CVE-2019-15090 CVE-2019-15098 CVE-2019-15117 CVE-2019-15118 CVE-2019-15211 CVE-2019-15212 CVE-2019-15214 CVE-2019-15215 CVE-2019-15216 CVE-2019-15217 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15222 CVE-2019-15239 CVE-2019-15290 CVE-2019-15292 CVE-2019-15538 CVE-2019-15666 CVE-2019-15902 CVE-2019-15917 CVE-2019-15919 CVE-2019-15920 CVE-2019-15921 CVE-2019-15924 CVE-2019-15926 CVE-2019-15927 CVE-2019-20479 CVE-2019-5798 CVE-2019-7317 CVE-2019-9456 CVE-2019-9797 CVE-2019-9800 CVE-2019-9815 CVE-2019-9816 CVE-2019-9817 CVE-2019-9818 CVE-2019-9819 CVE-2019-9820 CVE-2020-25595 CVE-2020-25596 CVE-2020-25597 CVE-2020-25598 CVE-2020-25599 CVE-2020-25600 CVE-2020-25601 CVE-2020-25602 CVE-2020-25603 CVE-2020-25604 CVE-2020-6819 CVE-2020-6820 CVE-2020-6821 CVE-2020-6822 CVE-2020-6825 SUSE-SU-2018:3680-1 SUSE-SU-2019:1458-1 SUSE-SU-2019:1495-1 SUSE-SU-2019:1894-1 SUSE-SU-2020:0705-1 SUSE-SU-2020:1027-1 SUSE-SU-2020:2791-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information openstack-cinder-2014.2.3.dev13-1 is installed OR openstack-cinder-volume-2014.2.3.dev13-1 is installed OR python-cinder-2014.2.3.dev13-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND binutils-2.23.1-0.23.15 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND cifs-utils-6.4-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information dbus-1-1.8.16-14 is installed OR dbus-1-x11-1.8.16-14 is installed OR libdbus-1-3-1.8.16-14 is installed OR libdbus-1-3-32bit-1.8.16-14 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information coreutils-8.25-12 is installed OR coreutils-lang-8.25-12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND python-PyYAML-3.10-15.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information libpcreposix0-8.39-5.1 is installed OR pcre-8.39-5.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND lighttpd-1.4.35-1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND conntrack-tools-1.4.2-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND python-requests-2.11.1-6.28 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND ctdb-4.10.5+git.129.35f7bb6e177-1 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_38-44-default-2-7.1 is installed OR kgraft-patch-3_12_38-44-xen-2-7.1 is installed OR kgraft-patch-SLE12_Update_3-2-7.1 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_73-5-default-2-2.3.2 is installed OR kgraft-patch-SLE12-SP3_Update_0-2-2.3.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information ruby2.1-rubygem-passenger-5.0.18-6.1 is installed OR rubygem-passenger-5.0.18-6.1 is installed OR rubygem-passenger-apache2-5.0.18-6.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information cups154-1.5.4-5.1 is installed OR cups154-client-1.5.4-5.1 is installed OR cups154-filters-1.5.4-5.1 is installed OR cups154-libs-1.5.4-5.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.44-52.10.1 is installed OR kernel-ec2-devel-3.12.44-52.10.1 is installed OR kernel-ec2-extra-3.12.44-52.10.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND apache2-mod_auth_openidc-2.3.8-3.7 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information xen-4.13.1_08-3.10 is installed OR xen-devel-4.13.1_08-3.10 is installed OR xen-tools-4.13.1_08-3.10 is installed OR xen-tools-xendomains-wait-disk-4.13.1_08-3.10 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND rsync-3.0.4-2.38.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND libpulse-browse0-0.9.23-0.15.1 is installed OR libpulse-mainloop-glib0-0.9.23-0.15.1 is installed OR libpulse0-0.9.23-0.15.1 is installed OR libpulse0-32bit-0.9.23-0.15.1 is installed OR libpulse0-x86-0.9.23-0.15.1 is installed OR pulseaudio-0.9.23-0.15.1 is installed OR pulseaudio-esound-compat-0.9.23-0.15.1 is installed OR pulseaudio-gdm-hooks-0.9.23-0.15.1 is installed OR pulseaudio-lang-0.9.23-0.15.1 is installed OR pulseaudio-module-x11-0.9.23-0.15.1 is installed OR pulseaudio-module-zeroconf-0.9.23-0.15.1 is installed OR pulseaudio-utils-0.9.23-0.15.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND libpulse-browse0-0.9.23-0.15.1 is installed OR libpulse-mainloop-glib0-0.9.23-0.15.1 is installed OR libpulse0-0.9.23-0.15.1 is installed OR libpulse0-32bit-0.9.23-0.15.1 is installed OR libpulse0-x86-0.9.23-0.15.1 is installed OR pulseaudio-0.9.23-0.15.1 is installed OR pulseaudio-esound-compat-0.9.23-0.15.1 is installed OR pulseaudio-gdm-hooks-0.9.23-0.15.1 is installed OR pulseaudio-lang-0.9.23-0.15.1 is installed OR pulseaudio-module-x11-0.9.23-0.15.1 is installed OR pulseaudio-module-zeroconf-0.9.23-0.15.1 is installed OR pulseaudio-utils-0.9.23-0.15.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information PackageKit-0.3.14-2.28.46 is installed OR PackageKit-lang-0.3.14-2.28.46 is installed OR hal-0.5.12-23.68.1 is installed OR hal-32bit-0.5.12-23.68.1 is installed OR hal-doc-0.5.12-23.68.1 is installed OR hal-x86-0.5.12-23.68.1 is installed OR libpackagekit-glib10-0.3.14-2.28.46 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information dbus-1-1.8.12-6.5 is installed OR dbus-1-x11-1.8.12-6.5 is installed OR libdbus-1-3-1.8.12-6.1 is installed OR libdbus-1-3-32bit-1.8.12-6.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libksba-1.3.0-18.1 is installed OR libksba8-1.3.0-18.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information MozillaFirefox-45.4.0esr-81 is installed OR MozillaFirefox-translations-45.4.0esr-81 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_60-52_54-default-2-2.2 is installed OR kgraft-patch-3_12_60-52_54-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_15-2-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information bind-9.9.9P1-49 is installed OR bind-chrootenv-9.9.9P1-49 is installed OR bind-doc-9.9.9P1-49 is installed OR bind-libs-9.9.9P1-49 is installed OR bind-utils-9.9.9P1-49 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information xorg-x11-libXrender-devel-7.4-1.16.2 is installed OR xorg-x11-libXrender-devel-32bit-7.4-1.16.2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information libopenssl-devel-0.9.8j-0.102.2 is installed OR libopenssl-devel-32bit-0.9.8j-0.102.2 is installed OR openssl-0.9.8j-0.102.2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information avahi-compat-howl-devel-0.6.31-20 is installed OR avahi-compat-mDNSResponder-devel-0.6.31-20 is installed OR libavahi-devel-0.6.31-20 is installed OR libhowl0-0.6.31-20 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND NetworkManager-devel-1.0.12-8 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information FastCGI-2.4.0-168 is installed OR FastCGI-devel-2.4.0-168 is installed OR perl-FastCGI-2.4.0-168 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information ImageMagick-6.8.8.1-8.2 is installed OR libMagick++-6_Q16-3-6.8.8.1-8.2 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-8.2 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information xorg-x11-server-1.19.6-8.3 is installed OR xorg-x11-server-wayland-1.19.6-8.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-60.7.0-3.36 is installed OR MozillaThunderbird-translations-common-60.7.0-3.36 is installed OR MozillaThunderbird-translations-other-60.7.0-3.36 is installed
BACK