OVAL Reference oval:org.opensuse.security:def:5431

Oval Definition:

oval:org.opensuse.security:def:5431

Revision Date:	2020-12-02	Version:	1
Title:	Security update for apache2 (Important)
Description:	This update for apache2 fixes the following issues: - CVE-2020-1934: mod_proxy_ftp may use uninitialized memory when proxying to a malicious FTP server (bsc#1168404). - CVE-2020-1927: mod_rewrite configurations vulnerable to open redirect (bsc#1168407). - CVE-2020-1938: mod_proxy_ajp: Add 'secret' parameter to proxy workers to implement legacy AJP13 authentication (bsc#1169066).
Family:	unix	Class:	patch
Status:		Reference(s):	1167152 1168140 1168142 1168143 1168404 1168407 1169066 1169392 1172205 CVE-2002-2443 CVE-2009-0844 CVE-2009-0845 CVE-2009-0846 CVE-2009-0847 CVE-2009-3295 CVE-2009-4212 CVE-2010-0283 CVE-2010-0628 CVE-2010-1320 CVE-2010-1321 CVE-2010-1322 CVE-2010-1323 CVE-2010-1324 CVE-2010-2800 CVE-2010-2801 CVE-2010-4020 CVE-2010-4021 CVE-2010-4022 CVE-2010-4530 CVE-2011-0020 CVE-2011-0064 CVE-2011-0281 CVE-2011-0282 CVE-2011-0284 CVE-2011-0285 CVE-2011-1527 CVE-2011-1528 CVE-2011-1529 CVE-2011-1530 CVE-2011-2709 CVE-2012-0035 CVE-2012-1012 CVE-2012-1013 CVE-2012-1016 CVE-2012-2738 CVE-2012-2812 CVE-2012-2813 CVE-2012-2814 CVE-2012-2836 CVE-2012-2837 CVE-2012-2840 CVE-2012-2841 CVE-2012-5112 CVE-2012-5133 CVE-2013-1415 CVE-2013-1417 CVE-2013-1418 CVE-2013-6473 CVE-2013-6474 CVE-2013-6475 CVE-2013-6476 CVE-2014-1344 CVE-2014-1384 CVE-2014-1385 CVE-2014-1386 CVE-2014-1387 CVE-2014-1388 CVE-2014-1389 CVE-2014-1390 CVE-2014-2707 CVE-2014-2892 CVE-2014-3421 CVE-2014-3422 CVE-2014-3423 CVE-2014-3424 CVE-2014-4336 CVE-2014-4337 CVE-2014-4338 CVE-2014-4341 CVE-2014-4342 CVE-2014-4343 CVE-2014-4344 CVE-2014-4345 CVE-2014-5351 CVE-2014-5352 CVE-2014-5353 CVE-2014-5354 CVE-2014-5355 CVE-2014-8169 CVE-2014-9421 CVE-2014-9422 CVE-2014-9423 CVE-2014-9556 CVE-2014-9732 CVE-2015-2265 CVE-2015-2330 CVE-2015-2694 CVE-2015-2695 CVE-2015-2696 CVE-2015-2697 CVE-2015-2698 CVE-2015-3258 CVE-2015-3279 CVE-2015-4467 CVE-2015-4468 CVE-2015-4469 CVE-2015-4470 CVE-2015-4471 CVE-2015-4472 CVE-2015-8327 CVE-2015-8560 CVE-2015-8629 CVE-2015-8630 CVE-2015-8631 CVE-2016-2851 CVE-2016-3119 CVE-2016-3120 CVE-2020-0543 CVE-2020-11739 CVE-2020-11740 CVE-2020-11741 CVE-2020-11742 CVE-2020-11743 CVE-2020-1927 CVE-2020-1934 CVE-2020-1938 SUSE-SU-2020:1126-1 SUSE-SU-2020:1634-1
Platform(s):	openSUSE 13.1 openSUSE 13.1 NonFree SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE OpenStack Cloud 5 SUSE OpenStack Cloud 6	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information openssh-6.2p2-0.21.1 is installed OR openssh-askpass-6.2p2-0.21.1 is installed OR openssh-askpass-gnome-6.2p2-0.21.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libpng12-0-1.2.31-5.35.1 is installed OR libpng12-0-32bit-1.2.31-5.35.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libexif12-0.6.21-6 is installed OR libexif12-32bit-0.6.21-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND autofs-5.0.9-21 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information NetworkManager-1.0.12-12 is installed OR NetworkManager-lang-1.0.12-12 is installed OR libnm-glib-vpn1-1.0.12-12 is installed OR libnm-glib4-1.0.12-12 is installed OR libnm-util2-1.0.12-12 is installed OR libnm0-1.0.12-12 is installed OR typelib-1_0-NM-1_0-1.0.12-12 is installed OR typelib-1_0-NMClient-1_0-1.0.12-12 is installed OR typelib-1_0-NetworkManager-1_0-1.0.12-12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 is installed AND Package Information kgraft-patch-3_12_60-52_54-default-3-2.1 is installed OR kgraft-patch-3_12_60-52_54-xen-3-2.1 is installed OR kgraft-patch-SLE12_Update_15-3-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information compat-openssl098-0.9.8j-102.1 is installed OR libopenssl0_9_8-0.9.8j-102.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND davfs2-1.5.2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-4_4_103-92_56-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_17-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_73-5-default-2-2.3.2 is installed OR kgraft-patch-SLE12-SP3_Update_0-2-2.3.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND docker-1.6.2-31 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information libopenssl0_9_8-0.9.8j-59 is installed OR libopenssl0_9_8-32bit-0.9.8j-59 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.38-44.1 is installed OR kernel-ec2-devel-3.12.38-44.1 is installed OR kernel-ec2-extra-3.12.38-44.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php5-5.5.14-30.1 is installed OR php5-5.5.14-30.1 is installed OR php5-bcmath-5.5.14-30.1 is installed OR php5-bz2-5.5.14-30.1 is installed OR php5-calendar-5.5.14-30.1 is installed OR php5-ctype-5.5.14-30.1 is installed OR php5-curl-5.5.14-30.1 is installed OR php5-dba-5.5.14-30.1 is installed OR php5-dom-5.5.14-30.1 is installed OR php5-enchant-5.5.14-30.1 is installed OR php5-exif-5.5.14-30.1 is installed OR php5-fastcgi-5.5.14-30.1 is installed OR php5-fileinfo-5.5.14-30.1 is installed OR php5-fpm-5.5.14-30.1 is installed OR php5-ftp-5.5.14-30.1 is installed OR php5-gd-5.5.14-30.1 is installed OR php5-gettext-5.5.14-30.1 is installed OR php5-gmp-5.5.14-30.1 is installed OR php5-iconv-5.5.14-30.1 is installed OR php5-intl-5.5.14-30.1 is installed OR php5-json-5.5.14-30.1 is installed OR php5-ldap-5.5.14-30.1 is installed OR php5-mbstring-5.5.14-30.1 is installed OR php5-mcrypt-5.5.14-30.1 is installed OR php5-mysql-5.5.14-30.1 is installed OR php5-odbc-5.5.14-30.1 is installed OR php5-openssl-5.5.14-30.1 is installed OR php5-pcntl-5.5.14-30.1 is installed OR php5-pdo-5.5.14-30.1 is installed OR php5-pear-5.5.14-30.1 is installed OR php5-pgsql-5.5.14-30.1 is installed OR php5-pspell-5.5.14-30.1 is installed OR php5-shmop-5.5.14-30.1 is installed OR php5-snmp-5.5.14-30.1 is installed OR php5-soap-5.5.14-30.1 is installed OR php5-sockets-5.5.14-30.1 is installed OR php5-sqlite-5.5.14-30.1 is installed OR php5-suhosin-5.5.14-30.1 is installed OR php5-sysvmsg-5.5.14-30.1 is installed OR php5-sysvsem-5.5.14-30.1 is installed OR php5-sysvshm-5.5.14-30.1 is installed OR php5-tokenizer-5.5.14-30.1 is installed OR php5-wddx-5.5.14-30.1 is installed OR php5-xmlreader-5.5.14-30.1 is installed OR php5-xmlrpc-5.5.14-30.1 is installed OR php5-xmlwriter-5.5.14-30.1 is installed OR php5-xsl-5.5.14-30.1 is installed OR php5-zip-5.5.14-30.1 is installed OR php5-zlib-5.5.14-30.1 is installed
Definition Synopsis
SUSE Linux Enterprise Point of Sale 12 SP2 is installed AND Package Information salt-2016.11.4-46.7.1 is installed OR salt-minion-2016.11.4-46.7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND Package Information libopensc2-0.11.6-5.25.1 is installed OR libopensc2-32bit-0.11.6-5.25.1 is installed OR libopensc2-x86-0.11.6-5.25.1 is installed OR opensc-0.11.6-5.25.1 is installed OR opensc-32bit-0.11.6-5.25.1 is installed OR opensc-x86-0.11.6-5.25.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP1-LTSS is installed AND Package Information bind-9.6ESVR11W1-0.9.1 is installed OR bind-chrootenv-9.6ESVR11W1-0.9.1 is installed OR bind-devel-9.6ESVR11W1-0.9.1 is installed OR bind-doc-9.6ESVR11W1-0.9.1 is installed OR bind-libs-9.6ESVR11W1-0.9.1 is installed OR bind-libs-32bit-9.6ESVR11W1-0.9.1 is installed OR bind-utils-9.6ESVR11W1-0.9.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information dbus-1-glib-0.76-34.22.1 is installed OR dbus-1-glib-32bit-0.76-34.22.1 is installed OR dbus-1-glib-x86-0.76-34.22.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information NetworkManager-0.7.1_git20090811-3.28.2 is installed OR NetworkManager-glib-0.7.1_git20090811-3.28.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information xorg-x11-Xvnc-7.4-27.105.1 is installed OR xorg-x11-server-7.4-27.105.1 is installed OR xorg-x11-server-extra-7.4-27.105.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information accountsservice-0.6.35-1 is installed OR accountsservice-lang-0.6.35-1 is installed OR libaccountsservice0-0.6.35-1 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information bash-4.2-75 is installed OR bash-doc-4.2-75 is installed OR libreadline6-6.2-75 is installed OR libreadline6-32bit-6.2-75 is installed OR readline-doc-6.2-75 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information jasper-1.900.14-181.1 is installed OR libjasper1-1.900.14-181.1 is installed OR libjasper1-32bit-1.900.14-181.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND libpng15-15-1.5.22-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND cifs-utils-6.5-9.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information emacs-24.3-16 is installed OR emacs-el-24.3-16 is installed OR emacs-info-24.3-16 is installed OR emacs-nox-24.3-16 is installed OR emacs-x11-24.3-16 is installed OR etags-24.3-16 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 is installed AND Package Information kgraft-patch-3_12_60-52_54-default-7-2 is installed OR kgraft-patch-3_12_60-52_54-xen-7-2 is installed OR kgraft-patch-SLE12_Update_15-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND Package Information xen-4.5.5_12-22.18 is installed OR xen-doc-html-4.5.5_12-22.18 is installed OR xen-kmp-default-4.5.5_12_k3.12.74_60.64.45-22.18 is installed OR xen-libs-4.5.5_12-22.18 is installed OR xen-libs-32bit-4.5.5_12-22.18 is installed OR xen-tools-4.5.5_12-22.18 is installed OR xen-tools-domU-4.5.5_12-22.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information apache2-2.4.33-3.30 is installed OR apache2-devel-2.4.33-3.30 is installed OR apache2-doc-2.4.33-3.30 is installed OR apache2-prefork-2.4.33-3.30 is installed OR apache2-utils-2.4.33-3.30 is installed OR apache2-worker-2.4.33-3.30 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information avahi-compat-howl-devel-0.6.23-11.32.1 is installed OR avahi-compat-mDNSResponder-devel-0.6.23-11.32.1 is installed OR libavahi-devel-0.6.23-11.32.1 is installed OR libhowl0-0.6.23-11.32.1 is installed OR python-avahi-0.6.23-11.32.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information bash-devel-4.2-75 is installed OR readline-devel-6.2-75 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information libblkid-devel-2.29.2-2 is installed OR libmount-devel-2.29.2-2 is installed OR libsmartcols-devel-2.29.2-2 is installed OR libuuid-devel-2.29.2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND augeas-devel-1.2.0-17.3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND cyrus-sasl-digestmd5-32bit-2.1.26-7 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information kernel-default-3.12.59-60.41.2 is installed OR kernel-default-extra-3.12.59-60.41.2 is installed

BACK