| Revision Date: | 2020-12-02 | Version: | 1 |
| Title: | Security update for apache2-mod_auth_openidc (Moderate) |
| Description: |
This update for apache2-mod_auth_openidc fixes the following issues:
- CVE-2019-20479: Fixed an open redirect issue in URLs with slash and backslash (bsc#1164459).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1027519
1047238
1050911
1051510
1054914
1055117
1056686
1060662
1061840
1061843
1064597
1064701
1065600
1065729
1066369
1071009
1071306
1078248
1082555
1085030
1085536
1085539
1086103
1087092
1089811
1090734
1091171
1093205
1102097
1104902
1106061
1106284
1106434
1108382
1112020
1112894
1112899
1112902
1112903
1112905
1112906
1112907
1113722
1114279
1114542
1116451
1118689
1119086
1120876
1120902
1120937
1121874
1123105
1123131
1123455
1123959
1124062
1124370
1124869
1127760
1127857
1128845
1129424
1129519
1129664
1130694
1131107
1131281
1131565
1133021
1133267
1134291
1134881
1134882
1135189
1135219
1135228
1135642
1135824
1135897
1136261
1137595
1137811
1137884
1138539
1139020
1139021
1139101
1139500
1140012
1140426
1140487
1141450
1141543
1141554
1142019
1142076
1142109
1142117
1142118
1142119
1142496
1142541
1142635
1142685
1142701
1142857
1143300
1143466
1143765
1143841
1143843
1144123
1144333
1144474
1144518
1144718
1144813
1144880
1144886
1144912
1144920
1144979
1145010
1145051
1145059
1145189
1145235
1145300
1145302
1145388
1145389
1145390
1145391
1145392
1145393
1145394
1145395
1145396
1145397
1145408
1145409
1145661
1145678
1145687
1145920
1145922
1145934
1145937
1145940
1145941
1145942
1146074
1146084
1146163
1146285
1146346
1146351
1146352
1146361
1146376
1146378
1146381
1146391
1146399
1146413
1146425
1146512
1146514
1146516
1146519
1146524
1146526
1146529
1146531
1146543
1146547
1146550
1146575
1146589
1146678
1146938
1148031
1148032
1148033
1148034
1148035
1148093
1148133
1148192
1148196
1148198
1148202
1148303
1148363
1148379
1148394
1148527
1148574
1148616
1148617
1148619
1148859
1148868
1149053
1149083
1149104
1149105
1149106
1149197
1149214
1149224
1149325
1149376
1149413
1149418
1149424
1149522
1149527
1149539
1149552
1149591
1149602
1149612
1149626
1149652
1149713
1149940
1149976
1150025
1150033
1150112
1150562
1150727
1150860
1150861
1150933
1164459
1168630
1168874
1176339
1176341
1176343
1176344
1176345
1176346
1176347
1176348
1176349
1176350
CVE-2009-1720
CVE-2009-1721
CVE-2009-1886
CVE-2009-1888
CVE-2009-2285
CVE-2009-2347
CVE-2009-2813
CVE-2009-2906
CVE-2009-2948
CVE-2010-0547
CVE-2010-0728
CVE-2010-0787
CVE-2010-1172
CVE-2010-2065
CVE-2010-2067
CVE-2010-2233
CVE-2010-2800
CVE-2010-2801
CVE-2010-2891
CVE-2010-4665
CVE-2011-0192
CVE-2011-1167
CVE-2012-1173
CVE-2012-1586
CVE-2012-2113
CVE-2012-3401
CVE-2012-4564
CVE-2013-0292
CVE-2013-1960
CVE-2013-1961
CVE-2013-4231
CVE-2013-4232
CVE-2013-4243
CVE-2013-4244
CVE-2014-3641
CVE-2017-18551
CVE-2018-14665
CVE-2018-16858
CVE-2018-18511
CVE-2018-20976
CVE-2018-21008
CVE-2019-10207
CVE-2019-11691
CVE-2019-11692
CVE-2019-11693
CVE-2019-11694
CVE-2019-11698
CVE-2019-11703
CVE-2019-11704
CVE-2019-11705
CVE-2019-11706
CVE-2019-14814
CVE-2019-14815
CVE-2019-14816
CVE-2019-14835
CVE-2019-15030
CVE-2019-15031
CVE-2019-15090
CVE-2019-15098
CVE-2019-15117
CVE-2019-15118
CVE-2019-15211
CVE-2019-15212
CVE-2019-15214
CVE-2019-15215
CVE-2019-15216
CVE-2019-15217
CVE-2019-15218
CVE-2019-15219
CVE-2019-15220
CVE-2019-15221
CVE-2019-15222
CVE-2019-15239
CVE-2019-15290
CVE-2019-15292
CVE-2019-15538
CVE-2019-15666
CVE-2019-15902
CVE-2019-15917
CVE-2019-15919
CVE-2019-15920
CVE-2019-15921
CVE-2019-15924
CVE-2019-15926
CVE-2019-15927
CVE-2019-20479
CVE-2019-5798
CVE-2019-7317
CVE-2019-9456
CVE-2019-9797
CVE-2019-9800
CVE-2019-9815
CVE-2019-9816
CVE-2019-9817
CVE-2019-9818
CVE-2019-9819
CVE-2019-9820
CVE-2020-25595
CVE-2020-25596
CVE-2020-25597
CVE-2020-25598
CVE-2020-25599
CVE-2020-25600
CVE-2020-25601
CVE-2020-25602
CVE-2020-25603
CVE-2020-25604
CVE-2020-6819
CVE-2020-6820
CVE-2020-6821
CVE-2020-6822
CVE-2020-6825
SUSE-SU-2018:3680-1
SUSE-SU-2019:1458-1
SUSE-SU-2019:1495-1
SUSE-SU-2019:1894-1
SUSE-SU-2020:0705-1
SUSE-SU-2020:1027-1
SUSE-SU-2020:2791-1
|
| Platform(s): | SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Live Patching 12 SP3
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 5
| Product(s): | |
| Definition Synopsis |
| SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information
openstack-cinder-2014.2.3.dev13-1 is installed
OR openstack-cinder-volume-2014.2.3.dev13-1 is installed
OR python-cinder-2014.2.3.dev13-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP3 is installed
AND binutils-2.23.1-0.23.15 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 is installed
AND cifs-utils-6.4-3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP1 is installed
AND Package Information
dbus-1-1.8.16-14 is installed
OR dbus-1-x11-1.8.16-14 is installed
OR libdbus-1-3-1.8.16-14 is installed
OR libdbus-1-3-32bit-1.8.16-14 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP2 is installed
AND Package Information
aaa_base-13.2+git20140911.61c1681-28 is installed
OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP3 is installed
AND Package Information
coreutils-8.25-12 is installed
OR coreutils-lang-8.25-12 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP4 is installed
AND Package Information
cracklib-2.9.0-7 is installed
OR libcrack2-2.9.0-7 is installed
OR libcrack2-32bit-2.9.0-7 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 is installed
AND python-PyYAML-3.10-15.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP1 is installed
AND Package Information
libpcreposix0-8.39-5.1 is installed
OR pcre-8.39-5.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP2 is installed
AND lighttpd-1.4.35-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP3 is installed
AND conntrack-tools-1.4.2-5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP4 is installed
AND python-requests-2.11.1-6.28 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP5 is installed
AND ctdb-4.10.5+git.129.35f7bb6e177-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
AND Package Information
accountsservice-0.6.42-16.3 is installed
OR accountsservice-lang-0.6.42-16.3 is installed
OR libaccountsservice0-0.6.42-16.3 is installed
OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Live Patching 12 is installed
AND Package Information
kgraft-patch-3_12_38-44-default-2-7.1 is installed
OR kgraft-patch-3_12_38-44-xen-2-7.1 is installed
OR kgraft-patch-SLE12_Update_3-2-7.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Live Patching 12 SP3 is installed
AND Package Information
kgraft-patch-4_4_73-5-default-2-2.3.2 is installed
OR kgraft-patch-SLE12-SP3_Update_0-2-2.3.2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Containers 12 is installed
AND Package Information
ruby2.1-rubygem-passenger-5.0.18-6.1 is installed
OR rubygem-passenger-5.0.18-6.1 is installed
OR rubygem-passenger-apache2-5.0.18-6.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Legacy Software 12 is installed
AND Package Information
cups154-1.5.4-5.1 is installed
OR cups154-client-1.5.4-5.1 is installed
OR cups154-filters-1.5.4-5.1 is installed
OR cups154-libs-1.5.4-5.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Public Cloud 12 is installed
AND Package Information
kernel-ec2-3.12.44-52.10.1 is installed
OR kernel-ec2-devel-3.12.44-52.10.1 is installed
OR kernel-ec2-extra-3.12.44-52.10.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
AND apache2-mod_auth_openidc-2.3.8-3.7 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
AND Package Information
xen-4.13.1_08-3.10 is installed
OR xen-devel-4.13.1_08-3.10 is installed
OR xen-tools-4.13.1_08-3.10 is installed
OR xen-tools-xendomains-wait-disk-4.13.1_08-3.10 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 11 SP2 is installed
AND rsync-3.0.4-2.38.1 is installed
|
| Definition Synopsis |
| Release Information
SUSE Linux Enterprise Server 11 SP3 is installed
AND
libpulse-browse0-0.9.23-0.15.1 is installed
OR libpulse-mainloop-glib0-0.9.23-0.15.1 is installed
OR libpulse0-0.9.23-0.15.1 is installed
OR libpulse0-32bit-0.9.23-0.15.1 is installed
OR libpulse0-x86-0.9.23-0.15.1 is installed
OR pulseaudio-0.9.23-0.15.1 is installed
OR pulseaudio-esound-compat-0.9.23-0.15.1 is installed
OR pulseaudio-gdm-hooks-0.9.23-0.15.1 is installed
OR pulseaudio-lang-0.9.23-0.15.1 is installed
OR pulseaudio-module-x11-0.9.23-0.15.1 is installed
OR pulseaudio-module-zeroconf-0.9.23-0.15.1 is installed
OR pulseaudio-utils-0.9.23-0.15.1 is installed
OR Package Information
SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
AND
libpulse-browse0-0.9.23-0.15.1 is installed
OR libpulse-mainloop-glib0-0.9.23-0.15.1 is installed
OR libpulse0-0.9.23-0.15.1 is installed
OR libpulse0-32bit-0.9.23-0.15.1 is installed
OR libpulse0-x86-0.9.23-0.15.1 is installed
OR pulseaudio-0.9.23-0.15.1 is installed
OR pulseaudio-esound-compat-0.9.23-0.15.1 is installed
OR pulseaudio-gdm-hooks-0.9.23-0.15.1 is installed
OR pulseaudio-lang-0.9.23-0.15.1 is installed
OR pulseaudio-module-x11-0.9.23-0.15.1 is installed
OR pulseaudio-module-zeroconf-0.9.23-0.15.1 is installed
OR pulseaudio-utils-0.9.23-0.15.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 11 SP3 is installed
AND Package Information
PackageKit-0.3.14-2.28.46 is installed
OR PackageKit-lang-0.3.14-2.28.46 is installed
OR hal-0.5.12-23.68.1 is installed
OR hal-32bit-0.5.12-23.68.1 is installed
OR hal-doc-0.5.12-23.68.1 is installed
OR hal-x86-0.5.12-23.68.1 is installed
OR libpackagekit-glib10-0.3.14-2.28.46 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 is installed
AND Package Information
dbus-1-1.8.12-6.5 is installed
OR dbus-1-x11-1.8.12-6.5 is installed
OR libdbus-1-3-1.8.12-6.1 is installed
OR libdbus-1-3-32bit-1.8.12-6.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1 is installed
AND Package Information
libksba-1.3.0-18.1 is installed
OR libksba8-1.3.0-18.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2 is installed
AND Package Information
MozillaFirefox-45.4.0esr-81 is installed
OR MozillaFirefox-translations-45.4.0esr-81 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
apache-commons-daemon-1.0.15-6 is installed
OR apache-commons-daemon-javadoc-1.0.15-6 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP4 is installed
AND Package Information
apache-commons-beanutils-1.9.2-1 is installed
OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12-LTSS is installed
AND Package Information
kgraft-patch-3_12_60-52_54-default-2-2.2 is installed
OR kgraft-patch-3_12_60-52_54-xen-2-2.2 is installed
OR kgraft-patch-SLE12_Update_15-2-2.2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
AND Package Information
bind-9.9.9P1-49 is installed
OR bind-chrootenv-9.9.9P1-49 is installed
OR bind-doc-9.9.9P1-49 is installed
OR bind-libs-9.9.9P1-49 is installed
OR bind-utils-9.9.9P1-49 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
AND Package Information
xorg-x11-libXrender-devel-7.4-1.16.2 is installed
OR xorg-x11-libXrender-devel-32bit-7.4-1.16.2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
AND Package Information
libopenssl-devel-0.9.8j-0.102.2 is installed
OR libopenssl-devel-32bit-0.9.8j-0.102.2 is installed
OR openssl-0.9.8j-0.102.2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
AND Package Information
avahi-compat-howl-devel-0.6.31-20 is installed
OR avahi-compat-mDNSResponder-devel-0.6.31-20 is installed
OR libavahi-devel-0.6.31-20 is installed
OR libhowl0-0.6.31-20 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
AND NetworkManager-devel-1.0.12-8 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
AND Package Information
FastCGI-2.4.0-168 is installed
OR FastCGI-devel-2.4.0-168 is installed
OR perl-FastCGI-2.4.0-168 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 12 is installed
AND Package Information
ImageMagick-6.8.8.1-8.2 is installed
OR libMagick++-6_Q16-3-6.8.8.1-8.2 is installed
OR libMagickCore-6_Q16-1-32bit-6.8.8.1-8.2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 is installed
AND Package Information
xorg-x11-server-1.19.6-8.3 is installed
OR xorg-x11-server-wayland-1.19.6-8.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
AND Package Information
MozillaThunderbird-60.7.0-3.36 is installed
OR MozillaThunderbird-translations-common-60.7.0-3.36 is installed
OR MozillaThunderbird-translations-other-60.7.0-3.36 is installed
|