Oval Definition:oval:org.opensuse.security:def:53461
Revision Date:2020-12-01Version:1
Title:Security update for apache2 (Important)
Description:

This update for apache2 fixes the following issues:

- CVE-2020-1934: mod_proxy_ftp may use uninitialized memory when proxying to a malicious FTP server (bsc#1168404). - CVE-2020-1927: mod_rewrite configurations vulnerable to open redirect (bsc#1168407). - CVE-2020-1938: mod_proxy_ajp: Add 'secret' parameter to proxy workers to implement legacy AJP13 authentication (bsc#1169066).
Family:unixClass:patch
Status:Reference(s):1015565
1037824
1057389
1074171
1075737
1075738
1075739
1075748
1075992
1168404
1168407
1169066
1173455
1175664
1175665
1175671
758040
886378
902606
913627
924919
934920
935087
937261
940929
943959
945649
949440
951155
951199
951392
951615
951638
952579
952976
956708
956801
956876
957395
957546
957988
957990
958463
958491
958501
958504
958510
958647
958886
958917
958951
959005
959190
959364
959386
959399
959436
959705
960300
960334
960708
960725
960835
961332
961333
961358
961556
961691
962320
963782
964411
964413
967969
969121
969122
969350
970036
970037
975128
975136
975700
976109
976942
976943
977614
977615
977616
977617
977621
978158
978160
980711
980723
981266
CVE-2010-2529
CVE-2010-2800
CVE-2010-2801
CVE-2012-2812
CVE-2012-2813
CVE-2012-2814
CVE-2012-2836
CVE-2012-2837
CVE-2012-2840
CVE-2012-2841
CVE-2013-2131
CVE-2013-4282
CVE-2014-9556
CVE-2014-9732
CVE-2015-0247
CVE-2015-1191
CVE-2015-1572
CVE-2015-3238
CVE-2015-3247
CVE-2015-4467
CVE-2015-4468
CVE-2015-4469
CVE-2015-4470
CVE-2015-4471
CVE-2015-4472
CVE-2015-5260
CVE-2015-5261
CVE-2015-5745
CVE-2015-7549
CVE-2015-7550
CVE-2015-8504
CVE-2015-8539
CVE-2015-8543
CVE-2015-8550
CVE-2015-8551
CVE-2015-8552
CVE-2015-8558
CVE-2015-8567
CVE-2015-8568
CVE-2015-8569
CVE-2015-8575
CVE-2015-8613
CVE-2015-8619
CVE-2015-8743
CVE-2015-8744
CVE-2015-8745
CVE-2015-8817
CVE-2015-8818
CVE-2016-0749
CVE-2016-1568
CVE-2016-1714
CVE-2016-1922
CVE-2016-1981
CVE-2016-2105
CVE-2016-2106
CVE-2016-2107
CVE-2016-2108
CVE-2016-2109
CVE-2016-2150
CVE-2016-2197
CVE-2016-2198
CVE-2016-2538
CVE-2016-2841
CVE-2016-2857
CVE-2016-2858
CVE-2016-3710
CVE-2016-3712
CVE-2016-4001
CVE-2016-4002
CVE-2016-4020
CVE-2016-4037
CVE-2016-4439
CVE-2016-4441
CVE-2016-4952
CVE-2016-6328
CVE-2016-9577
CVE-2016-9578
CVE-2017-1000251
CVE-2017-13194
CVE-2017-17935
CVE-2017-7544
CVE-2018-5334
CVE-2018-5335
CVE-2018-5336
CVE-2020-15049
CVE-2020-15810
CVE-2020-15811
CVE-2020-1927
CVE-2020-1934
CVE-2020-1938
CVE-2020-24606
SUSE-SU-2015:0670-1
SUSE-SU-2016:0168-1
SUSE-SU-2016:1233-1
SUSE-SU-2016:1703-1
SUSE-SU-2017:1398-1
SUSE-SU-2017:2521-1
SUSE-SU-2018:0181-1
SUSE-SU-2018:0191-1
SUSE-SU-2020:1126-1
SUSE-SU-2020:2442-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • alsa-1.1.5-lp150.4 is installed
  • OR libasound2-1.1.5-lp150.4 is installed
  • OR libasound2-32bit-1.1.5-lp150.4 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • chromedriver-74.0.3729.157-lp151.2.3 is installed
  • OR chromium-74.0.3729.157-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • coreutils-8.12-6.25.29 is installed
  • OR coreutils-lang-8.12-6.25.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND cabextract-1.2-2.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • MozillaFirefox-38.6.1esr-34 is installed
  • OR MozillaFirefox-translations-38.6.1esr-34 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND pigz-2.3-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • qemu-2.3.1-14 is installed
  • OR qemu-block-curl-2.3.1-14 is installed
  • OR qemu-ipxe-1.0.0-14 is installed
  • OR qemu-kvm-2.3.1-14 is installed
  • OR qemu-seabios-1.8.1-14 is installed
  • OR qemu-sgabios-8-14 is installed
  • OR qemu-tools-2.3.1-14 is installed
  • OR qemu-vgabios-1.8.1-14 is installed
  • OR qemu-x86-2.3.1-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • kernel-default-4.4.74-92.38 is installed
  • OR kernel-default-devel-4.4.74-92.38 is installed
  • OR kernel-default-extra-4.4.74-92.38 is installed
  • OR kernel-devel-4.4.74-92.38 is installed
  • OR kernel-macros-4.4.74-92.38 is installed
  • OR kernel-source-4.4.74-92.38 is installed
  • OR kernel-syms-4.4.74-92.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND iputils-s20121221-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • e2fsprogs-1.43.8-1 is installed
  • OR libcom_err2-1.43.8-1 is installed
  • OR libcom_err2-32bit-1.43.8-1 is installed
  • OR libext2fs2-1.43.8-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND git-core-1.8.5.6-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • libecpg6-9.6.4-3.6 is installed
  • OR libpq5-9.6.4-3.6 is installed
  • OR libpq5-32bit-9.6.4-3.6 is installed
  • OR postgresql96-9.6.4-3.6 is installed
  • OR postgresql96-contrib-9.6.4-3.6 is installed
  • OR postgresql96-docs-9.6.4-3.6 is installed
  • OR postgresql96-libs-9.6.4-3.6 is installed
  • OR postgresql96-server-9.6.4-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND binutils-2.26.1-9.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND yast2-smt-3.0.14-17.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_85-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_23-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed
  • OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed
  • OR libwebkit2gtk3-lang-2.24.4-2.47 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed
  • OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed
  • OR typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed
  • OR webkit2gtk3-2.24.4-2.47 is installed
  • OR webkit2gtk3-devel-2.24.4-2.47 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • gstreamer-plugins-base-1.8.3-12 is installed
  • OR gstreamer-plugins-base-lang-1.8.3-12 is installed
  • OR libgstallocators-1_0-0-1.8.3-12 is installed
  • OR libgstapp-1_0-0-1.8.3-12 is installed
  • OR libgstapp-1_0-0-32bit-1.8.3-12 is installed
  • OR libgstaudio-1_0-0-1.8.3-12 is installed
  • OR libgstaudio-1_0-0-32bit-1.8.3-12 is installed
  • OR libgstfft-1_0-0-1.8.3-12 is installed
  • OR libgstpbutils-1_0-0-1.8.3-12 is installed
  • OR libgstpbutils-1_0-0-32bit-1.8.3-12 is installed
  • OR libgstriff-1_0-0-1.8.3-12 is installed
  • OR libgstrtp-1_0-0-1.8.3-12 is installed
  • OR libgstrtsp-1_0-0-1.8.3-12 is installed
  • OR libgstsdp-1_0-0-1.8.3-12 is installed
  • OR libgsttag-1_0-0-1.8.3-12 is installed
  • OR libgsttag-1_0-0-32bit-1.8.3-12 is installed
  • OR libgstvideo-1_0-0-1.8.3-12 is installed
  • OR libgstvideo-1_0-0-32bit-1.8.3-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • ghostscript-9.27-23.28 is installed
  • OR ghostscript-x11-9.27-23.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_103-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libzypp-16.17.20-2.33 is installed
  • OR zypper-1.13.45-21.21 is installed
  • OR zypper-log-1.13.45-21.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • glibc-2.22-15 is installed
  • OR glibc-32bit-2.22-15 is installed
  • OR glibc-devel-2.22-15 is installed
  • OR glibc-devel-32bit-2.22-15 is installed
  • OR glibc-html-2.22-15 is installed
  • OR glibc-i18ndata-2.22-15 is installed
  • OR glibc-info-2.22-15 is installed
  • OR glibc-locale-2.22-15 is installed
  • OR glibc-locale-32bit-2.22-15 is installed
  • OR glibc-profile-2.22-15 is installed
  • OR glibc-profile-32bit-2.22-15 is installed
  • OR nscd-2.22-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • apache2-2.4.33-3.30 is installed
  • OR apache2-devel-2.4.33-3.30 is installed
  • OR apache2-doc-2.4.33-3.30 is installed
  • OR apache2-prefork-2.4.33-3.30 is installed
  • OR apache2-utils-2.4.33-3.30 is installed
  • OR apache2-worker-2.4.33-3.30 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND python-pymongo-3.0.3-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • xen-4.7.5_04-43.33 is installed
  • OR xen-doc-html-4.7.5_04-43.33 is installed
  • OR xen-libs-4.7.5_04-43.33 is installed
  • OR xen-libs-32bit-4.7.5_04-43.33 is installed
  • OR xen-tools-4.7.5_04-43.33 is installed
  • OR xen-tools-domU-4.7.5_04-43.33 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • mariadb-10.2.29-3.22 is installed
  • OR mariadb-galera-10.2.29-3.22 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.13-28.31 is installed
  • OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed
  • OR python-2.7.13-28.31 is installed
  • OR python-32bit-2.7.13-28.31 is installed
  • OR python-base-2.7.13-28.31 is installed
  • OR python-base-32bit-2.7.13-28.31 is installed
  • OR python-curses-2.7.13-28.31 is installed
  • OR python-demo-2.7.13-28.31 is installed
  • OR python-devel-2.7.13-28.31 is installed
  • OR python-doc-2.7.13-28.31 is installed
  • OR python-doc-pdf-2.7.13-28.31 is installed
  • OR python-gdbm-2.7.13-28.31 is installed
  • OR python-idle-2.7.13-28.31 is installed
  • OR python-tk-2.7.13-28.31 is installed
  • OR python-xml-2.7.13-28.31 is installed
    • BACK