Oval Definition:	oval:org.opensuse.security:def:5275
Revision Date: 2022-06-16 Version: 1 Title: Security update for apache2 (Important) Description: This update for apache2 fixes the following issues: - CVE-2022-26377: Fixed possible request smuggling in mod_proxy_ajp (bsc#1200338) - CVE-2022-28614: Fixed read beyond bounds via ap_rwrite() (bsc#1200340) - CVE-2022-28615: Fixed read beyond bounds in ap_strcmp_match() (bsc#1200341) - CVE-2022-29404: Fixed denial of service in mod_lua r:parsebody (bsc#1200345) - CVE-2022-30556: Fixed information disclosure in mod_lua with websockets (bsc#1200350) - CVE-2022-30522: Fixed mod_sed denial of service (bsc#1200352) - CVE-2022-31813: Fixed mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism (bsc#1200348) Family: unix Class: patch Status: Reference(s): 1093733 1094301 1101776 1101777 1101786 1101788 1101791 1101794 1101800 1101802 1101804 1101810 1106514 1111647 1117740 1121231 1121232 1121233 1121234 1121235 1127367 1127369 1127370 1131941 1131945 1136021 1141980 1150690 1156288 1158505 1161052 1165241 1165710 1171928 1200338 1200340 1200341 1200345 1200348 1200350 1200352 957624 CVE-2007-5970 CVE-2008-7247 CVE-2009-0758 CVE-2009-0945 CVE-2009-4019 CVE-2009-4028 CVE-2009-4030 CVE-2010-2244 CVE-2010-4530 CVE-2010-5298 CVE-2011-0904 CVE-2011-0905 CVE-2011-1002 CVE-2011-1164 CVE-2011-2483 CVE-2011-2709 CVE-2011-3193 CVE-2011-3922 CVE-2012-1571 CVE-2012-3386 CVE-2012-4929 CVE-2012-5615 CVE-2012-6093 CVE-2013-0221 CVE-2013-0222 CVE-2013-0223 CVE-2013-0254 CVE-2013-1976 CVE-2013-4326 CVE-2013-4549 CVE-2014-0190 CVE-2014-0195 CVE-2014-0198 CVE-2014-0221 CVE-2014-0224 CVE-2014-2494 CVE-2014-3470 CVE-2014-3618 CVE-2014-3710 CVE-2014-4207 CVE-2014-4258 CVE-2014-4260 CVE-2014-4274 CVE-2014-4287 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6474 CVE-2014-6478 CVE-2014-6484 CVE-2014-6489 CVE-2014-6491 CVE-2014-6494 CVE-2014-6495 CVE-2014-6496 CVE-2014-6500 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559 CVE-2014-6564 CVE-2014-6568 CVE-2014-8116 CVE-2014-8117 CVE-2014-8964 CVE-2015-0295 CVE-2015-0374 CVE-2015-0381 CVE-2015-0382 CVE-2015-0391 CVE-2015-0411 CVE-2015-0432 CVE-2015-0433 CVE-2015-0441 CVE-2015-0499 CVE-2015-0501 CVE-2015-0505 CVE-2015-1858 CVE-2015-1859 CVE-2015-1860 CVE-2015-2325 CVE-2015-2326 CVE-2015-2568 CVE-2015-2571 CVE-2015-2573 CVE-2015-2924 CVE-2015-3152 CVE-2015-4041 CVE-2015-4042 CVE-2016-0764 CVE-2018-11354 CVE-2018-11355 CVE-2018-11356 CVE-2018-11357 CVE-2018-11358 CVE-2018-11359 CVE-2018-11360 CVE-2018-11361 CVE-2018-11362 CVE-2018-12086 CVE-2018-14339 CVE-2018-14340 CVE-2018-14341 CVE-2018-14342 CVE-2018-14343 CVE-2018-14344 CVE-2018-14367 CVE-2018-14368 CVE-2018-14369 CVE-2018-14370 CVE-2018-16056 CVE-2018-16057 CVE-2018-16058 CVE-2018-18225 CVE-2018-18226 CVE-2018-18227 CVE-2018-19622 CVE-2018-19623 CVE-2018-19624 CVE-2018-19625 CVE-2018-19626 CVE-2018-19627 CVE-2018-19628 CVE-2019-10894 CVE-2019-10895 CVE-2019-10896 CVE-2019-10897 CVE-2019-10898 CVE-2019-10899 CVE-2019-10900 CVE-2019-10901 CVE-2019-10902 CVE-2019-10903 CVE-2019-13619 CVE-2019-16319 CVE-2019-19553 CVE-2019-5716 CVE-2019-5717 CVE-2019-5718 CVE-2019-5719 CVE-2019-5721 CVE-2019-9208 CVE-2019-9209 CVE-2019-9214 CVE-2020-7044 CVE-2020-9428 CVE-2020-9429 CVE-2020-9430 CVE-2020-9431 CVE-2020-9484 CVE-2022-26377 CVE-2022-28614 CVE-2022-28615 CVE-2022-29404 CVE-2022-30522 CVE-2022-30556 CVE-2022-31813 SUSE-SU-2020:0693-1 SUSE-SU-2020:1364-1 SUSE-SU-2022:2101-1 Platform(s): openSUSE 13.1 openSUSE 13.1 NonFree SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Real Time Extension 12 SP1 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information python-glanceclient-0.15.0-3.1 is installed OR python-keystoneclient-1.0.0-19.1 is installed OR python-keystoneclient-doc-1.0.0-19.1 is installed OR python-keystonemiddleware-1.2.0-4.1 is installed OR python-novaclient-2.20.0-6.1 is installed OR python-novaclient-doc-2.20.0-6.1 is installed OR python-swiftclient-2.3.1-3.1 is installed OR python-swiftclient-doc-2.3.1-3.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information cpio-2.9-75.78.1 is installed OR cpio-lang-2.9-75.78.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND wireshark-1.12.9-0.12.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND procmail-3.22-267 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information coreutils-8.22-9 is installed OR coreutils-lang-8.22-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information NetworkManager-1.0.12-8 is installed OR NetworkManager-lang-1.0.12-8 is installed OR libnm-glib-vpn1-1.0.12-8 is installed OR libnm-glib4-1.0.12-8 is installed OR libnm-util2-1.0.12-8 is installed OR libnm0-1.0.12-8 is installed OR typelib-1_0-NM-1_0-1.0.12-8 is installed OR typelib-1_0-NMClient-1_0-1.0.12-8 is installed OR typelib-1_0-NetworkManager-1_0-1.0.12-8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND coolkey-1.1.0-147 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND dracut-044.1-9 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 is installed AND Package Information kgraft-patch-3_12_60-52_54-default-2-2.2 is installed OR kgraft-patch-3_12_60-52_54-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_15-2-2.2 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information libpacemaker3-1.1.15-19 is installed OR pacemaker-1.1.15-19 is installed OR pacemaker-cli-1.1.15-19 is installed OR pacemaker-cts-1.1.15-19 is installed OR pacemaker-remote-1.1.15-19 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND ctdb-4.6.5+git.27.6afd48b1083-2 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND lighttpd-1.4.35-3 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information apache-commons-beanutils-1.9.2-3.3 is installed OR apache-commons-beanutils-javadoc-1.9.2-3.3 is installed Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed AND libmaxminddb-1.4.2-1.3 is installed OR libmaxminddb-devel-1.4.2-1.3 is installed OR libmaxminddb0-1.4.2-1.3 is installed OR libmaxminddb0-32bit-1.4.2-1.3 is installed OR libspandsp2-0.0.6-3.2 is installed OR libwireshark13-3.2.2-3.35 is installed OR libwiretap10-3.2.2-3.35 is installed OR libwsutil11-3.2.2-3.35 is installed OR mmdblookup-1.4.2-1.3 is installed OR spandsp-0.0.6-3.2 is installed OR wireshark-3.2.2-3.35 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15-LTSS is installed AND libmaxminddb-1.4.2-1.3 is installed OR libmaxminddb-devel-1.4.2-1.3 is installed OR libmaxminddb0-1.4.2-1.3 is installed OR libmaxminddb0-32bit-1.4.2-1.3 is installed OR libspandsp2-0.0.6-3.2 is installed OR libwireshark13-3.2.2-3.35 is installed OR libwiretap10-3.2.2-3.35 is installed OR libwsutil11-3.2.2-3.35 is installed OR mmdblookup-1.4.2-1.3 is installed OR spandsp-0.0.6-3.2 is installed OR wireshark-3.2.2-3.35 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_67-60_64_18-default-3-2 is installed OR kgraft-patch-3_12_67-60_64_18-xen-3-2 is installed OR kgraft-patch-SLE12-SP1_Update_9-3-2 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_82-6_3-default-1-2.1 is installed OR kgraft-patch-SLE12-SP3_Update_1-1-2.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND facter-2.0.2-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information sles12-docker-image-1.1.2-20160727 is installed OR sles12sp1-docker-image-1.0.5-20160727 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information libopenssl0_9_8-0.9.8j-59 is installed OR libopenssl0_9_8-32bit-0.9.8j-59 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.44-52.10.1 is installed OR kernel-ec2-devel-3.12.44-52.10.1 is installed OR kernel-ec2-extra-3.12.44-52.10.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND apache2-mod_wsgi-4.4.13-2 is installed Definition Synopsis SUSE Linux Enterprise Real Time Extension 12 SP1 is installed AND Package Information kernel-compute-3.12.69-60.30 is installed OR kernel-compute-base-3.12.69-60.30 is installed OR kernel-compute-devel-3.12.69-60.30 is installed OR kernel-compute_debug-3.12.69-60.30 is installed OR kernel-compute_debug-devel-3.12.69-60.30 is installed OR kernel-devel-rt-3.12.69-60.30 is installed OR kernel-rt-3.12.69-60.30 is installed OR kernel-rt-base-3.12.69-60.30 is installed OR kernel-rt-devel-3.12.69-60.30 is installed OR kernel-rt_debug-3.12.69-60.30 is installed OR kernel-rt_debug-devel-3.12.69-60.30 is installed OR kernel-source-rt-3.12.69-60.30 is installed OR kernel-syms-rt-3.12.69-60.30 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information apache2-2.2.12-1.28.1 is installed OR apache2-doc-2.2.12-1.28.1 is installed OR apache2-example-pages-2.2.12-1.28.1 is installed OR apache2-prefork-2.2.12-1.28.1 is installed OR apache2-utils-2.2.12-1.28.1 is installed OR apache2-worker-2.2.12-1.28.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information OpenEXR-1.6.1-83.17.1 is installed OR OpenEXR-32bit-1.6.1-83.17.1 is installed OR OpenEXR-x86-1.6.1-83.17.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND libadns1-1.4-73.21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information accountsservice-0.6.35-1 is installed OR accountsservice-lang-0.6.35-1 is installed OR libaccountsservice0-0.6.35-1 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information dovecot22-2.2.13-4.1 is installed OR dovecot22-backend-mysql-2.2.13-4.1 is installed OR dovecot22-backend-pgsql-2.2.13-4.1 is installed OR dovecot22-backend-sqlite-2.2.13-4.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information dbus-1-1.8.22-28 is installed OR dbus-1-x11-1.8.22-28 is installed OR libdbus-1-3-1.8.22-28 is installed OR libdbus-1-3-32bit-1.8.22-28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information alsa-1.0.27.2-15 is installed OR alsa-docs-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND apache2-devel-2.4.51-35.19.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information bind-9.9.9P1-28.37.1 is installed OR bind-chrootenv-9.9.9P1-28.37.1 is installed OR bind-devel-9.9.9P1-28.37.1 is installed OR bind-doc-9.9.9P1-28.37.1 is installed OR bind-libs-9.9.9P1-28.37.1 is installed OR bind-libs-32bit-9.9.9P1-28.37.1 is installed OR bind-utils-9.9.9P1-28.37.1 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information tomcat-9.0.35-3.52 is installed OR tomcat-admin-webapps-9.0.35-3.52 is installed OR tomcat-el-3_0-api-9.0.35-3.52 is installed OR tomcat-jsp-2_3-api-9.0.35-3.52 is installed OR tomcat-lib-9.0.35-3.52 is installed OR tomcat-servlet-4_0-api-9.0.35-3.52 is installed OR tomcat-webapps-9.0.35-3.52 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information libopenssl-devel-1.0.2j-60.24 is installed OR libopenssl1_0_0-1.0.2j-60.24 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.24 is installed OR openssl-1.0.2j-60.24 is installed OR openssl-doc-1.0.2j-60.24 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 is installed AND Package Information libmysqlclient-devel-10.0.27-20.13 is installed OR libmysqlclient18-10.0.27-20.13 is installed OR libmysqlclient18-32bit-10.0.27-20.13 is installed OR libmysqlclient_r18-10.0.27-20.13 is installed OR libmysqld-devel-10.0.27-20.13 is installed OR libmysqld18-10.0.27-20.13 is installed OR mariadb-10.0.27-20.13 is installed OR mariadb-client-10.0.27-20.13 is installed OR mariadb-errormessages-10.0.27-20.13 is installed OR mariadb-tools-10.0.27-20.13 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND augeas-devel-0.9.0-3.15.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND libxml2-devel-2.9.4-27 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND MozillaFirefox-devel-52.2.0esr-108 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information FastCGI-2.4.0-168 is installed OR FastCGI-devel-2.4.0-168 is installed OR perl-FastCGI-2.4.0-168 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND pidgin-otr-4.0.0-8.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information gimp-2.8.10-7.8 is installed OR gimp-lang-2.8.10-7.8 is installed OR gimp-plugins-python-2.8.10-7.8 is installed OR libgimp-2_0-0-2.8.10-7.8 is installed OR libgimpui-2_0-0-2.8.10-7.8 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information gd-2.1.0-20.1 is installed OR gd-32bit-2.1.0-20.1 is installed
BACK