Oval Definition:oval:org.opensuse.security:def:5275
Revision Date:2022-06-16Version:1
Title:Security update for apache2 (Important)
Description:

This update for apache2 fixes the following issues:

- CVE-2022-26377: Fixed possible request smuggling in mod_proxy_ajp (bsc#1200338) - CVE-2022-28614: Fixed read beyond bounds via ap_rwrite() (bsc#1200340) - CVE-2022-28615: Fixed read beyond bounds in ap_strcmp_match() (bsc#1200341) - CVE-2022-29404: Fixed denial of service in mod_lua r:parsebody (bsc#1200345) - CVE-2022-30556: Fixed information disclosure in mod_lua with websockets (bsc#1200350) - CVE-2022-30522: Fixed mod_sed denial of service (bsc#1200352) - CVE-2022-31813: Fixed mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism (bsc#1200348)
Family:unixClass:patch
Status:Reference(s):1093733
1094301
1101776
1101777
1101786
1101788
1101791
1101794
1101800
1101802
1101804
1101810
1106514
1111647
1117740
1121231
1121232
1121233
1121234
1121235
1127367
1127369
1127370
1131941
1131945
1136021
1141980
1150690
1156288
1158505
1161052
1165241
1165710
1171928
1200338
1200340
1200341
1200345
1200348
1200350
1200352
957624
CVE-2007-5970
CVE-2008-7247
CVE-2009-0758
CVE-2009-0945
CVE-2009-4019
CVE-2009-4028
CVE-2009-4030
CVE-2010-2244
CVE-2010-4530
CVE-2010-5298
CVE-2011-0904
CVE-2011-0905
CVE-2011-1002
CVE-2011-1164
CVE-2011-2483
CVE-2011-2709
CVE-2011-3193
CVE-2011-3922
CVE-2012-1571
CVE-2012-3386
CVE-2012-4929
CVE-2012-5615
CVE-2012-6093
CVE-2013-0221
CVE-2013-0222
CVE-2013-0223
CVE-2013-0254
CVE-2013-1976
CVE-2013-4326
CVE-2013-4549
CVE-2014-0190
CVE-2014-0195
CVE-2014-0198
CVE-2014-0221
CVE-2014-0224
CVE-2014-2494
CVE-2014-3470
CVE-2014-3618
CVE-2014-3710
CVE-2014-4207
CVE-2014-4258
CVE-2014-4260
CVE-2014-4274
CVE-2014-4287
CVE-2014-6463
CVE-2014-6464
CVE-2014-6469
CVE-2014-6474
CVE-2014-6478
CVE-2014-6484
CVE-2014-6489
CVE-2014-6491
CVE-2014-6494
CVE-2014-6495
CVE-2014-6496
CVE-2014-6500
CVE-2014-6505
CVE-2014-6507
CVE-2014-6520
CVE-2014-6530
CVE-2014-6551
CVE-2014-6555
CVE-2014-6559
CVE-2014-6564
CVE-2014-6568
CVE-2014-8116
CVE-2014-8117
CVE-2014-8964
CVE-2015-0295
CVE-2015-0374
CVE-2015-0381
CVE-2015-0382
CVE-2015-0391
CVE-2015-0411
CVE-2015-0432
CVE-2015-0433
CVE-2015-0441
CVE-2015-0499
CVE-2015-0501
CVE-2015-0505
CVE-2015-1858
CVE-2015-1859
CVE-2015-1860
CVE-2015-2325
CVE-2015-2326
CVE-2015-2568
CVE-2015-2571
CVE-2015-2573
CVE-2015-2924
CVE-2015-3152
CVE-2015-4041
CVE-2015-4042
CVE-2016-0764
CVE-2018-11354
CVE-2018-11355
CVE-2018-11356
CVE-2018-11357
CVE-2018-11358
CVE-2018-11359
CVE-2018-11360
CVE-2018-11361
CVE-2018-11362
CVE-2018-12086
CVE-2018-14339
CVE-2018-14340
CVE-2018-14341
CVE-2018-14342
CVE-2018-14343
CVE-2018-14344
CVE-2018-14367
CVE-2018-14368
CVE-2018-14369
CVE-2018-14370
CVE-2018-16056
CVE-2018-16057
CVE-2018-16058
CVE-2018-18225
CVE-2018-18226
CVE-2018-18227
CVE-2018-19622
CVE-2018-19623
CVE-2018-19624
CVE-2018-19625
CVE-2018-19626
CVE-2018-19627
CVE-2018-19628
CVE-2019-10894
CVE-2019-10895
CVE-2019-10896
CVE-2019-10897
CVE-2019-10898
CVE-2019-10899
CVE-2019-10900
CVE-2019-10901
CVE-2019-10902
CVE-2019-10903
CVE-2019-13619
CVE-2019-16319
CVE-2019-19553
CVE-2019-5716
CVE-2019-5717
CVE-2019-5718
CVE-2019-5719
CVE-2019-5721
CVE-2019-9208
CVE-2019-9209
CVE-2019-9214
CVE-2020-7044
CVE-2020-9428
CVE-2020-9429
CVE-2020-9430
CVE-2020-9431
CVE-2020-9484
CVE-2022-26377
CVE-2022-28614
CVE-2022-28615
CVE-2022-29404
CVE-2022-30522
CVE-2022-30556
CVE-2022-31813
SUSE-SU-2020:0693-1
SUSE-SU-2020:1364-1
SUSE-SU-2022:2101-1
Platform(s):openSUSE 13.1
openSUSE 13.1 NonFree
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise High Performance Computing 15-ESPOS
SUSE Linux Enterprise High Performance Computing 15-LTSS
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Live Patching 12 SP3
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Real Time Extension 12 SP1
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP4
SUSE Linux Enterprise Software Development Kit 12 SP5
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE OpenStack Cloud 5
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND Package Information
  • python-glanceclient-0.15.0-3.1 is installed
  • OR python-keystoneclient-1.0.0-19.1 is installed
  • OR python-keystoneclient-doc-1.0.0-19.1 is installed
  • OR python-keystonemiddleware-1.2.0-4.1 is installed
  • OR python-novaclient-2.20.0-6.1 is installed
  • OR python-novaclient-doc-2.20.0-6.1 is installed
  • OR python-swiftclient-2.3.1-3.1 is installed
  • OR python-swiftclient-doc-2.3.1-3.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • cpio-2.9-75.78.1 is installed
  • OR cpio-lang-2.9-75.78.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND wireshark-1.12.9-0.12.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND procmail-3.22-267 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • coreutils-8.22-9 is installed
  • OR coreutils-lang-8.22-9 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • NetworkManager-1.0.12-8 is installed
  • OR NetworkManager-lang-1.0.12-8 is installed
  • OR libnm-glib-vpn1-1.0.12-8 is installed
  • OR libnm-glib4-1.0.12-8 is installed
  • OR libnm-util2-1.0.12-8 is installed
  • OR libnm0-1.0.12-8 is installed
  • OR typelib-1_0-NM-1_0-1.0.12-8 is installed
  • OR typelib-1_0-NMClient-1_0-1.0.12-8 is installed
  • OR typelib-1_0-NetworkManager-1_0-1.0.12-8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND coolkey-1.1.0-147 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND dracut-044.1-9 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_60-52_54-default-2-2.2 is installed
  • OR kgraft-patch-3_12_60-52_54-xen-2-2.2 is installed
  • OR kgraft-patch-SLE12_Update_15-2-2.2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND Package Information
  • libpacemaker3-1.1.15-19 is installed
  • OR pacemaker-1.1.15-19 is installed
  • OR pacemaker-cli-1.1.15-19 is installed
  • OR pacemaker-cts-1.1.15-19 is installed
  • OR pacemaker-remote-1.1.15-19 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND ctdb-4.6.5+git.27.6afd48b1083-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND lighttpd-1.4.35-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • apache-commons-beanutils-1.9.2-3.3 is installed
  • OR apache-commons-beanutils-javadoc-1.9.2-3.3 is installed
  • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed
  • AND
  • libmaxminddb-1.4.2-1.3 is installed
  • OR libmaxminddb-devel-1.4.2-1.3 is installed
  • OR libmaxminddb0-1.4.2-1.3 is installed
  • OR libmaxminddb0-32bit-1.4.2-1.3 is installed
  • OR libspandsp2-0.0.6-3.2 is installed
  • OR libwireshark13-3.2.2-3.35 is installed
  • OR libwiretap10-3.2.2-3.35 is installed
  • OR libwsutil11-3.2.2-3.35 is installed
  • OR mmdblookup-1.4.2-1.3 is installed
  • OR spandsp-0.0.6-3.2 is installed
  • OR wireshark-3.2.2-3.35 is installed
  • OR Package Information
  • SUSE Linux Enterprise High Performance Computing 15-LTSS is installed
  • AND
  • libmaxminddb-1.4.2-1.3 is installed
  • OR libmaxminddb-devel-1.4.2-1.3 is installed
  • OR libmaxminddb0-1.4.2-1.3 is installed
  • OR libmaxminddb0-32bit-1.4.2-1.3 is installed
  • OR libspandsp2-0.0.6-3.2 is installed
  • OR libwireshark13-3.2.2-3.35 is installed
  • OR libwiretap10-3.2.2-3.35 is installed
  • OR libwsutil11-3.2.2-3.35 is installed
  • OR mmdblookup-1.4.2-1.3 is installed
  • OR spandsp-0.0.6-3.2 is installed
  • OR wireshark-3.2.2-3.35 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_67-60_64_18-default-3-2 is installed
  • OR kgraft-patch-3_12_67-60_64_18-xen-3-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_9-3-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 SP3 is installed
  • AND Package Information
  • kgraft-patch-4_4_82-6_3-default-1-2.1 is installed
  • OR kgraft-patch-SLE12-SP3_Update_1-1-2.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND facter-2.0.2-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 12 is installed
  • AND Package Information
  • sles12-docker-image-1.1.2-20160727 is installed
  • OR sles12sp1-docker-image-1.0.5-20160727 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • libopenssl0_9_8-0.9.8j-59 is installed
  • OR libopenssl0_9_8-32bit-0.9.8j-59 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • AND Package Information
  • kernel-ec2-3.12.44-52.10.1 is installed
  • OR kernel-ec2-devel-3.12.44-52.10.1 is installed
  • OR kernel-ec2-extra-3.12.44-52.10.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND apache2-mod_wsgi-4.4.13-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Real Time Extension 12 SP1 is installed
  • AND Package Information
  • kernel-compute-3.12.69-60.30 is installed
  • OR kernel-compute-base-3.12.69-60.30 is installed
  • OR kernel-compute-devel-3.12.69-60.30 is installed
  • OR kernel-compute_debug-3.12.69-60.30 is installed
  • OR kernel-compute_debug-devel-3.12.69-60.30 is installed
  • OR kernel-devel-rt-3.12.69-60.30 is installed
  • OR kernel-rt-3.12.69-60.30 is installed
  • OR kernel-rt-base-3.12.69-60.30 is installed
  • OR kernel-rt-devel-3.12.69-60.30 is installed
  • OR kernel-rt_debug-3.12.69-60.30 is installed
  • OR kernel-rt_debug-devel-3.12.69-60.30 is installed
  • OR kernel-source-rt-3.12.69-60.30 is installed
  • OR kernel-syms-rt-3.12.69-60.30 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • apache2-2.2.12-1.28.1 is installed
  • OR apache2-doc-2.2.12-1.28.1 is installed
  • OR apache2-example-pages-2.2.12-1.28.1 is installed
  • OR apache2-prefork-2.2.12-1.28.1 is installed
  • OR apache2-utils-2.2.12-1.28.1 is installed
  • OR apache2-worker-2.2.12-1.28.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • OpenEXR-1.6.1-83.17.1 is installed
  • OR OpenEXR-32bit-1.6.1-83.17.1 is installed
  • OR OpenEXR-x86-1.6.1-83.17.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND libadns1-1.4-73.21 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • accountsservice-0.6.35-1 is installed
  • OR accountsservice-lang-0.6.35-1 is installed
  • OR libaccountsservice0-0.6.35-1 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.35-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND apache-commons-httpclient-3.1-4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • dovecot22-2.2.13-4.1 is installed
  • OR dovecot22-backend-mysql-2.2.13-4.1 is installed
  • OR dovecot22-backend-pgsql-2.2.13-4.1 is installed
  • OR dovecot22-backend-sqlite-2.2.13-4.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • dbus-1-1.8.22-28 is installed
  • OR dbus-1-x11-1.8.22-28 is installed
  • OR libdbus-1-3-1.8.22-28 is installed
  • OR libdbus-1-3-32bit-1.8.22-28 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • alsa-1.0.27.2-15 is installed
  • OR alsa-docs-1.0.27.2-15 is installed
  • OR libasound2-1.0.27.2-15 is installed
  • OR libasound2-32bit-1.0.27.2-15 is installed
  • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed
  • AND apache2-devel-2.4.51-35.19.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • bind-9.9.9P1-28.37.1 is installed
  • OR bind-chrootenv-9.9.9P1-28.37.1 is installed
  • OR bind-devel-9.9.9P1-28.37.1 is installed
  • OR bind-doc-9.9.9P1-28.37.1 is installed
  • OR bind-libs-9.9.9P1-28.37.1 is installed
  • OR bind-libs-32bit-9.9.9P1-28.37.1 is installed
  • OR bind-utils-9.9.9P1-28.37.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • tomcat-9.0.35-3.52 is installed
  • OR tomcat-admin-webapps-9.0.35-3.52 is installed
  • OR tomcat-el-3_0-api-9.0.35-3.52 is installed
  • OR tomcat-jsp-2_3-api-9.0.35-3.52 is installed
  • OR tomcat-lib-9.0.35-3.52 is installed
  • OR tomcat-servlet-4_0-api-9.0.35-3.52 is installed
  • OR tomcat-webapps-9.0.35-3.52 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.24 is installed
  • OR libopenssl1_0_0-1.0.2j-60.24 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.24 is installed
  • OR openssl-1.0.2j-60.24 is installed
  • OR openssl-doc-1.0.2j-60.24 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 is installed
  • AND Package Information
  • libmysqlclient-devel-10.0.27-20.13 is installed
  • OR libmysqlclient18-10.0.27-20.13 is installed
  • OR libmysqlclient18-32bit-10.0.27-20.13 is installed
  • OR libmysqlclient_r18-10.0.27-20.13 is installed
  • OR libmysqld-devel-10.0.27-20.13 is installed
  • OR libmysqld18-10.0.27-20.13 is installed
  • OR mariadb-10.0.27-20.13 is installed
  • OR mariadb-client-10.0.27-20.13 is installed
  • OR mariadb-errormessages-10.0.27-20.13 is installed
  • OR mariadb-tools-10.0.27-20.13 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND augeas-devel-0.9.0-3.15.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND libxml2-devel-2.9.4-27 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND MozillaFirefox-devel-52.2.0esr-108 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND Package Information
  • FastCGI-2.4.0-168 is installed
  • OR FastCGI-devel-2.4.0-168 is installed
  • OR perl-FastCGI-2.4.0-168 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND pidgin-otr-4.0.0-8.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND Package Information
  • gimp-2.8.10-7.8 is installed
  • OR gimp-lang-2.8.10-7.8 is installed
  • OR gimp-plugins-python-2.8.10-7.8 is installed
  • OR libgimp-2_0-0-2.8.10-7.8 is installed
  • OR libgimpui-2_0-0-2.8.10-7.8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND Package Information
  • gd-2.1.0-20.1 is installed
  • OR gd-32bit-2.1.0-20.1 is installed
  • BACK