Oval Definition:oval:org.opensuse.security:def:53187
Revision Date:2020-12-01Version:1
Title:Security update for apache2 (Important)
Description:

This update for apache2 fixes the following issues:

Security issues fixed:

- CVE-2018-11763: In Apache HTTP Server by sending continuous, large SETTINGS frames a client can occupy a connection, server thread and CPU time without any connection timeout coming to effect. This affects only HTTP/2 connections. (bsc#1109961)

Bug fixes:

- consider also patterns in APACHE_CONF_INCLUDE_DIRS as documentation says (patch Juergen Gleiss)
Family:unixClass:patch
Status:Reference(s):1000345
1000346
1001151
1002116
1002549
1002550
1002557
1003612
1003613
1003878
1003893
1003894
1004702
1004706
1004707
1005353
1005374
1005522
1005523
1005524
1005525
1005526
1005527
1005528
1006536
1006538
1007263
1007391
1007493
1007494
1007495
1007769
1008148
1015499
1015547
1021636
1026102
1030071
1035082
1109961
1120489
812259
855062
867583
899908
902606
923240
924919
935087
937261
937444
938577
940338
940946
941363
942476
943989
944749
945649
947953
949160
949440
949936
950292
951199
951392
951615
952579
952976
954992
955118
955354
955654
956514
956708
957525
957988
957990
958463
958886
958951
959090
959146
959190
959257
959364
959399
959436
959463
959629
960221
960227
960281
960300
960319
961202
961257
961500
961509
961516
961588
961971
962336
962356
962788
962965
963449
963572
963765
963767
963825
964230
964821
965344
965840
983639
988651
998516
CVE-2009-1886
CVE-2009-1888
CVE-2009-2813
CVE-2009-2906
CVE-2009-2948
CVE-2010-0547
CVE-2010-0728
CVE-2010-0787
CVE-2010-0926
CVE-2010-1635
CVE-2010-1642
CVE-2010-2063
CVE-2010-3069
CVE-2011-0719
CVE-2011-2522
CVE-2011-2694
CVE-2011-2709
CVE-2012-0817
CVE-2012-0870
CVE-2012-1182
CVE-2012-2111
CVE-2012-6150
CVE-2013-0172
CVE-2013-0213
CVE-2013-0214
CVE-2013-0454
CVE-2013-1863
CVE-2013-4124
CVE-2013-4282
CVE-2013-4408
CVE-2013-4475
CVE-2013-4476
CVE-2013-4496
CVE-2013-6442
CVE-2013-7446
CVE-2014-0178
CVE-2014-0239
CVE-2014-0244
CVE-2014-2524
CVE-2014-3493
CVE-2014-3560
CVE-2014-6271
CVE-2014-6277
CVE-2014-6278
CVE-2014-7169
CVE-2014-7186
CVE-2014-7187
CVE-2014-8143
CVE-2015-0240
CVE-2015-0272
CVE-2015-1191
CVE-2015-2331
CVE-2015-3223
CVE-2015-3247
CVE-2015-5198
CVE-2015-5199
CVE-2015-5200
CVE-2015-5252
CVE-2015-5260
CVE-2015-5261
CVE-2015-5296
CVE-2015-5299
CVE-2015-5330
CVE-2015-5370
CVE-2015-5707
CVE-2015-7550
CVE-2015-7555
CVE-2015-7560
CVE-2015-7799
CVE-2015-8215
CVE-2015-8467
CVE-2015-8539
CVE-2015-8543
CVE-2015-8550
CVE-2015-8551
CVE-2015-8569
CVE-2015-8575
CVE-2015-8660
CVE-2015-8767
CVE-2015-8785
CVE-2016-0723
CVE-2016-0749
CVE-2016-1950
CVE-2016-2069
CVE-2016-2110
CVE-2016-2111
CVE-2016-2112
CVE-2016-2113
CVE-2016-2115
CVE-2016-2118
CVE-2016-2119
CVE-2016-2150
CVE-2016-2347
CVE-2016-2834
CVE-2016-5542
CVE-2016-5554
CVE-2016-5556
CVE-2016-5568
CVE-2016-5573
CVE-2016-5582
CVE-2016-5597
CVE-2016-7161
CVE-2016-7170
CVE-2016-7422
CVE-2016-7466
CVE-2016-7907
CVE-2016-7908
CVE-2016-7909
CVE-2016-7994
CVE-2016-7995
CVE-2016-8576
CVE-2016-8577
CVE-2016-8578
CVE-2016-8635
CVE-2016-8667
CVE-2016-8668
CVE-2016-8669
CVE-2016-8909
CVE-2016-8910
CVE-2016-9101
CVE-2016-9104
CVE-2016-9105
CVE-2016-9106
CVE-2016-9574
CVE-2016-9577
CVE-2016-9578
CVE-2017-5429
CVE-2017-5432
CVE-2017-5433
CVE-2017-5434
CVE-2017-5435
CVE-2017-5436
CVE-2017-5437
CVE-2017-5438
CVE-2017-5439
CVE-2017-5440
CVE-2017-5441
CVE-2017-5442
CVE-2017-5443
CVE-2017-5444
CVE-2017-5445
CVE-2017-5446
CVE-2017-5447
CVE-2017-5448
CVE-2017-5459
CVE-2017-5460
CVE-2017-5461
CVE-2017-5462
CVE-2017-5464
CVE-2017-5465
CVE-2017-5469
CVE-2017-6318
CVE-2018-11763
CVE-2018-20217
SUSE-SU-2015:0668-1
SUSE-SU-2016:0202-1
SUSE-SU-2016:0585-1
SUSE-SU-2016:2879-1
SUSE-SU-2016:2887-1
SUSE-SU-2017:1248-1
SUSE-SU-2018:3101-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 6-LTSS
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • libX11-6-1.6.5-lp150.1 is installed
  • OR libX11-data-1.6.5-lp150.1 is installed
  • OR libX11-xcb1-1.6.5-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • gdal-2.4.3-lp151.3.3 is installed
  • OR gdal-devel-2.4.3-lp151.3.3 is installed
  • OR libgdal20-2.4.3-lp151.3.3 is installed
  • OR perl-gdal-2.4.3-lp151.3.3 is installed
  • OR python2-GDAL-2.4.3-lp151.3.3 is installed
  • OR python3-GDAL-2.4.3-lp151.3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND telepathy-idle-0.1.5-1.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-24.7.0esr-0.8 is installed
  • OR MozillaFirefox-translations-24.7.0esr-0.8 is installed
  • OR libfreebl3-3.16.2-0.8 is installed
  • OR libfreebl3-32bit-3.16.2-0.8 is installed
  • OR libsoftokn3-3.16.2-0.8 is installed
  • OR libsoftokn3-32bit-3.16.2-0.8 is installed
  • OR mozilla-nss-3.16.2-0.8 is installed
  • OR mozilla-nss-32bit-3.16.2-0.8 is installed
  • OR mozilla-nss-tools-3.16.2-0.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • compat-openssl097g-0.9.7g-146.22.41 is installed
  • OR compat-openssl097g-32bit-0.9.7g-146.22.41 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • libzip-0.11.1-6 is installed
  • OR libzip2-0.11.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • kernel-default-3.12.53-60.30 is installed
  • OR kernel-default-devel-3.12.53-60.30 is installed
  • OR kernel-default-extra-3.12.53-60.30 is installed
  • OR kernel-devel-3.12.53-60.30 is installed
  • OR kernel-macros-3.12.53-60.30 is installed
  • OR kernel-source-3.12.53-60.30 is installed
  • OR kernel-syms-3.12.53-60.30 is installed
  • OR kernel-xen-3.12.53-60.30 is installed
  • OR kernel-xen-devel-3.12.53-60.30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND libdcerpc-atsvc0-4.2.4-26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • bash-4.3-82 is installed
  • OR bash-doc-4.3-82 is installed
  • OR bash-lang-4.3-82 is installed
  • OR libreadline6-6.3-82 is installed
  • OR libreadline6-32bit-6.3-82 is installed
  • OR readline-doc-6.3-82 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • libgssglue1-0.4-3 is installed
  • OR libgssglue1-32bit-0.4-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • apache2-2.4.33-3.6 is installed
  • OR apache2-devel-2.4.33-3.6 is installed
  • OR apache2-doc-2.4.33-3.6 is installed
  • OR apache2-prefork-2.4.33-3.6 is installed
  • OR apache2-utils-2.4.33-3.6 is installed
  • OR apache2-worker-2.4.33-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • cups-filters-1.0.58-8 is installed
  • OR cups-filters-cups-browsed-1.0.58-8 is installed
  • OR cups-filters-foomatic-rip-1.0.58-8 is installed
  • OR cups-filters-ghostscript-1.0.58-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_82-default-2-2 is installed
  • OR kgraft-patch-3_12_74-60_64_82-xen-2-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_25-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • fuse-2.9.3-5 is installed
  • OR libfuse2-2.9.3-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.35-38.29 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.35-38.29 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.35-38.29 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.35-38.29 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.35-38.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_80-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_22-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_114-92_67-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_19-7-2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND
  • kernel-default-4.4.180-94.100 is installed
  • OR kernel-default-base-4.4.180-94.100 is installed
  • OR kernel-default-devel-4.4.180-94.100 is installed
  • OR kernel-default-man-4.4.180-94.100 is installed
  • OR kernel-devel-4.4.180-94.100 is installed
  • OR kernel-macros-4.4.180-94.100 is installed
  • OR kernel-source-4.4.180-94.100 is installed
  • OR kernel-syms-4.4.180-94.100 is installed
  • OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed
  • OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND
  • kernel-default-4.4.180-94.100 is installed
  • OR kernel-default-base-4.4.180-94.100 is installed
  • OR kernel-default-devel-4.4.180-94.100 is installed
  • OR kernel-default-man-4.4.180-94.100 is installed
  • OR kernel-devel-4.4.180-94.100 is installed
  • OR kernel-macros-4.4.180-94.100 is installed
  • OR kernel-source-4.4.180-94.100 is installed
  • OR kernel-syms-4.4.180-94.100 is installed
  • OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed
  • OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND apache2-mod_nss-1.0.14-18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND mailman-2.1.17-3.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed
  • OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed
  • OR libwebkit2gtk3-lang-2.24.4-2.47 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed
  • OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed
  • OR webkit2gtk3-2.24.4-2.47 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • MozillaFirefox-68.1.0-109.89 is installed
  • OR MozillaFirefox-branding-SLE-68-32.8 is installed
  • OR MozillaFirefox-translations-common-68.1.0-109.89 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libsoup-2.62.2-5.7 is installed
  • OR libsoup-2_4-1-2.62.2-5.7 is installed
  • OR libsoup-2_4-1-32bit-2.62.2-5.7 is installed
  • OR libsoup-lang-2.62.2-5.7 is installed
  • OR typelib-1_0-Soup-2_4-2.62.2-5.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND binutils-2.31-9.26 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND ruby2.1-rubygem-activemodel-4_2-4.2.2-5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6-LTSS is installed
  • AND docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-1.9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • ghostscript-9.26-23.16 is installed
  • OR ghostscript-x11-9.26-23.16 is installed
  • OR libspectre-0.2.7-12.4 is installed
  • OR libspectre1-0.2.7-12.4 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND git-2.12.3-27.14 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-Django1-1.11.23-3.9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libecpg6-10.9-1.12 is installed
  • OR libpq5-10.9-1.12 is installed
  • OR libpq5-32bit-10.9-1.12 is installed
  • OR postgresql10-10.9-1.12 is installed
  • OR postgresql10-contrib-10.9-1.12 is installed
  • OR postgresql10-docs-10.9-1.12 is installed
  • OR postgresql10-libs-10.9-1.12 is installed
  • OR postgresql10-plperl-10.9-1.12 is installed
  • OR postgresql10-plpython-10.9-1.12 is installed
  • OR postgresql10-pltcl-10.9-1.12 is installed
  • OR postgresql10-server-10.9-1.12 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND nodejs6-6.17.0-11.27 is installed
    • BACK