Oval Definition:	oval:org.opensuse.security:def:5631
Revision Date: 2021-04-01 Version: 1 Title: Security update for tomcat (Important) Description: This update for tomcat fixes the following issues: CVE-2021-25122: Apache Tomcat h2c request mix-up (bsc#1182912) CVE-2021-25329: Complete fix for CVE-2020-9484 (bsc#1182909) Family: unix Class: patch Status: Reference(s): 1046303 1048942 1051510 1065600 1071995 1078248 1082635 1083647 1089644 1090888 1091041 1104427 1108043 1113722 1114279 1115026 1117169 1120853 1127371 1131107 1138039 1140948 1142095 1143706 1143959 1144333 1146519 1146544 1149448 1150466 1151178 1151548 1151900 1152631 1152782 1153628 1153681 1153811 1154043 1154058 1154124 1154355 1154526 1154956 1155021 1155331 1155334 1155689 1155692 1155836 1155897 1155921 1156187 1156258 1156259 1156429 1156462 1156466 1156471 1156494 1156609 1156700 1156729 1156882 1157038 1157042 1157070 1157143 1157145 1157158 1157162 1157169 1157171 1157173 1157178 1157180 1157182 1157183 1157184 1157191 1157193 1157197 1157298 1157303 1157307 1157324 1157333 1157424 1157463 1157499 1157678 1157698 1157778 1157853 1157908 1158049 1158063 1158064 1158065 1158066 1158067 1158068 1158082 1158094 1158132 1158381 1158394 1158398 1158407 1158410 1158413 1158417 1158427 1158445 1158533 1158637 1158638 1158639 1158640 1158641 1158643 1158644 1158645 1158646 1158647 1158649 1158651 1158652 1158823 1158824 1158827 1158834 1158893 1158900 1158903 1158904 1158954 1159024 1159297 1182909 1182912 CVE-2007-3126 CVE-2008-3825 CVE-2009-0946 CVE-2009-1384 CVE-2009-1885 CVE-2009-2624 CVE-2010-0001 CVE-2010-2497 CVE-2010-2805 CVE-2010-3053 CVE-2010-3054 CVE-2010-3311 CVE-2010-3814 CVE-2010-4000 CVE-2010-4352 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 CVE-2011-0226 CVE-2011-1946 CVE-2011-2896 CVE-2011-3146 CVE-2011-3848 CVE-2011-3872 CVE-2012-0862 CVE-2012-3236 CVE-2012-3524 CVE-2012-3864 CVE-2012-3865 CVE-2012-3866 CVE-2012-3867 CVE-2012-5576 CVE-2012-5668 CVE-2012-5669 CVE-2012-5670 CVE-2013-1881 CVE-2013-1987 CVE-2013-2168 CVE-2013-3567 CVE-2013-4342 CVE-2013-4761 CVE-2013-4956 CVE-2013-7447 CVE-2014-2240 CVE-2014-3248 CVE-2014-3253 CVE-2014-3477 CVE-2014-3532 CVE-2014-3533 CVE-2014-3635 CVE-2014-3636 CVE-2014-3637 CVE-2014-3638 CVE-2014-3639 CVE-2014-7824 CVE-2014-8148 CVE-2014-9656 CVE-2014-9657 CVE-2014-9658 CVE-2014-9659 CVE-2014-9660 CVE-2014-9661 CVE-2014-9662 CVE-2014-9663 CVE-2014-9664 CVE-2014-9665 CVE-2014-9666 CVE-2014-9667 CVE-2014-9668 CVE-2014-9669 CVE-2014-9670 CVE-2014-9671 CVE-2014-9672 CVE-2014-9673 CVE-2014-9674 CVE-2014-9675 CVE-2015-0245 CVE-2015-0252 CVE-2016-0729 CVE-2016-2099 CVE-2016-4463 CVE-2016-4994 CVE-2016-6855 CVE-2019-14895 CVE-2019-14901 CVE-2019-15213 CVE-2019-15916 CVE-2019-16231 CVE-2019-16239 CVE-2019-17055 CVE-2019-18660 CVE-2019-18683 CVE-2019-18805 CVE-2019-18808 CVE-2019-18809 CVE-2019-19049 CVE-2019-19051 CVE-2019-19052 CVE-2019-19056 CVE-2019-19057 CVE-2019-19058 CVE-2019-19060 CVE-2019-19062 CVE-2019-19063 CVE-2019-19065 CVE-2019-19066 CVE-2019-19067 CVE-2019-19068 CVE-2019-19073 CVE-2019-19074 CVE-2019-19075 CVE-2019-19077 CVE-2019-19227 CVE-2019-19332 CVE-2019-19338 CVE-2019-19523 CVE-2019-19524 CVE-2019-19525 CVE-2019-19526 CVE-2019-19527 CVE-2019-19528 CVE-2019-19529 CVE-2019-19530 CVE-2019-19531 CVE-2019-19532 CVE-2019-19533 CVE-2019-19534 CVE-2019-19535 CVE-2019-19536 CVE-2019-19537 CVE-2019-19543 CVE-2019-19767 CVE-2021-25122 CVE-2021-25329 SUSE-SU-2019:2737-1 SUSE-SU-2019:3381-1 Platform(s): openSUSE 13.1 openSUSE 13.1 NonFree SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Availability Extension 11 SP3 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Real Time Extension 12 SP1 SUSE Linux Enterprise Real Time Extension 12 SP2 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 5 SUSE OpenStack Cloud 6 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND haproxy-1.5.4-2.4.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information eog-3.20.4-7 is installed OR eog-lang-3.20.4-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information dbus-1-1.8.22-28 is installed OR dbus-1-x11-1.8.22-28 is installed OR libdbus-1-3-1.8.22-28 is installed OR libdbus-1-3-32bit-1.8.22-28 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 is installed AND Package Information apache2-2.4.10-14.17.1 is installed OR apache2-doc-2.4.10-14.17.1 is installed OR apache2-example-pages-2.4.10-14.17.1 is installed OR apache2-prefork-2.4.10-14.17.1 is installed OR apache2-utils-2.4.10-14.17.1 is installed OR apache2-worker-2.4.10-14.17.1 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information compat-openssl098-0.9.8j-94.1 is installed OR libopenssl0_9_8-0.9.8j-94.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND conntrack-tools-1.4.2-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND lighttpd-1.4.35-3 is installed Definition Synopsis SUSE Linux Enterprise High Availability Extension 11 SP3 is installed AND libgnutls-extra26-2.4.1-24.39.51.1 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information automake-1.13.4-6 is installed OR m4-1.4.16-15 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.61-52.111 is installed OR kernel-ec2-devel-3.12.61-52.111 is installed OR kernel-ec2-extra-3.12.61-52.111 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND python3-3.4.1-2 is installed Definition Synopsis SUSE Linux Enterprise Real Time Extension 12 SP1 is installed AND Package Information kernel-compute-3.12.67-60.27.1 is installed OR kernel-compute-base-3.12.67-60.27.1 is installed OR kernel-compute-devel-3.12.67-60.27.1 is installed OR kernel-compute_debug-3.12.67-60.27.1 is installed OR kernel-compute_debug-devel-3.12.67-60.27.1 is installed OR kernel-devel-rt-3.12.67-60.27.1 is installed OR kernel-rt-3.12.67-60.27.1 is installed OR kernel-rt-base-3.12.67-60.27.1 is installed OR kernel-rt-devel-3.12.67-60.27.1 is installed OR kernel-rt_debug-3.12.67-60.27.1 is installed OR kernel-rt_debug-devel-3.12.67-60.27.1 is installed OR kernel-source-rt-3.12.67-60.27.1 is installed OR kernel-syms-rt-3.12.67-60.27.1 is installed Definition Synopsis SUSE Linux Enterprise Real Time Extension 12 SP2 is installed AND Package Information cluster-md-kmp-rt-4.4.88-18.1 is installed OR cluster-network-kmp-rt-4.4.88-18.1 is installed OR dlm-kmp-rt-4.4.88-18.1 is installed OR gfs2-kmp-rt-4.4.88-18.1 is installed OR kernel-devel-rt-4.4.88-18.1 is installed OR kernel-rt-4.4.88-18.1 is installed OR kernel-rt-base-4.4.88-18.1 is installed OR kernel-rt-devel-4.4.88-18.1 is installed OR kernel-rt_debug-4.4.88-18.1 is installed OR kernel-rt_debug-devel-4.4.88-18.1 is installed OR kernel-source-rt-4.4.88-18.1 is installed OR kernel-syms-rt-4.4.88-18.1 is installed OR ocfs2-kmp-rt-4.4.88-18.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 is installed AND Package Information libnetpbm10-10.26.44-101.9.1 is installed OR libnetpbm10-32bit-10.26.44-101.9.1 is installed OR libnetpbm10-x86-10.26.44-101.9.1 is installed OR netpbm-10.26.44-101.9.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information OpenEXR-1.6.1-83.17.1 is installed OR OpenEXR-32bit-1.6.1-83.17.1 is installed OR OpenEXR-x86-1.6.1-83.17.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND Package Information ntp-4.2.8p8-47.3 is installed OR ntp-doc-4.2.8p8-47.3 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information dhcpcd-3.2.3-44.30.1 is installed OR dhcpv6-1.0.22-3.21.2 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND aaa_base-11-6.105.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information accountsservice-0.6.35-1 is installed OR accountsservice-lang-0.6.35-1 is installed OR libaccountsservice0-0.6.35-1 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information accountsservice-0.6.35-3 is installed OR accountsservice-lang-0.6.35-3 is installed OR libaccountsservice0-0.6.35-3 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND dnsmasq-2.78-18.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr3.60-31.2 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr3.60-31.2 is installed OR java-1_7_1-ibm-devel-1.7.1_sr3.60-31.2 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr3.60-31.2 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr3.60-31.2 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND ant-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND dhcp-devel-4.2.4.P2-0.11.13.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information libldb-devel-3.6.3-0.52.5 is installed OR libnetapi-devel-3.6.3-0.52.5 is installed OR libnetapi0-3.6.3-0.52.5 is installed OR libsmbclient-devel-3.6.3-0.52.5 is installed OR libsmbsharemodes-devel-3.6.3-0.52.5 is installed OR libsmbsharemodes0-3.6.3-0.52.5 is installed OR libtalloc-devel-3.6.3-0.52.5 is installed OR libtdb-devel-3.6.3-0.52.5 is installed OR libtevent-devel-3.6.3-0.52.5 is installed OR libwbclient-devel-3.6.3-0.52.5 is installed OR samba-devel-3.6.3-0.52.5 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information pwlib-1.10.10-120.35.1 is installed OR pwlib-devel-1.10.10-120.35.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND dia-0.97.2-13 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND file-devel-5.19-9 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND gdk-pixbuf-devel-2.34.0-19.17 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND argyllcms-1.6.3-1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information colord-1.1.7-5 is installed OR colord-lang-1.1.7-5 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND bogofilter-1.2.4-5 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-70 is installed OR libMagick++-6_Q16-3-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-70 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information ImageMagick-6.8.8.1-71.85 is installed OR libMagick++-6_Q16-3-6.8.8.1-71.85 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.85 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-150.47 is installed OR kernel-default-extra-4.12.14-150.47 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information openconnect-7.08-6.3 is installed OR openconnect-devel-7.08-6.3 is installed OR openconnect-lang-7.08-6.3 is installed
BACK