Oval Definition:	oval:org.opensuse.security:def:57466
Revision Date: 2021-06-17 Version: 1 Title: Security update for apache2 (Important) Description: This update for apache2 fixes the following issues: - fixed CVE-2021-30641 [bsc#1187174]: MergeSlashes regression - fixed CVE-2021-31618 [bsc#1186924]: NULL pointer dereference on specially crafted HTTP/2 request - fixed CVE-2020-35452 [bsc#1186922]: Single zero byte stack overflow in mod_auth_digest - fixed CVE-2021-26690 [bsc#1186923]: mod_session NULL pointer dereference in parser - fixed CVE-2021-26691 [bsc#1187017]: Heap overflow in mod_session Family: unix Class: patch Status: Reference(s): 1014702 1015169 1016779 1017081 1017084 1020491 1020589 1020928 1021129 1021195 1021481 1022541 1023004 1023053 1023073 1023907 1024972 1026583 1103098 1106119 1119553 1119554 1119555 1119556 1119557 1119558 1123156 1124593 1124729 1124734 1128378 1131060 1137443 1145092 1146873 1149811 1161066 1163018 1166240 1170940 1176409 1176412 1186922 1186923 1186924 1187017 1187174 875647 881241 908275 935033 935979 977027 983273 CVE-2009-0159 CVE-2009-1252 CVE-2011-4349 CVE-2013-2063 CVE-2013-5211 CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 CVE-2014-9296 CVE-2014-9297 CVE-2014-9298 CVE-2015-1798 CVE-2015-1799 CVE-2015-2721 CVE-2015-2722 CVE-2015-2724 CVE-2015-2725 CVE-2015-2726 CVE-2015-2728 CVE-2015-2730 CVE-2015-2733 CVE-2015-2734 CVE-2015-2735 CVE-2015-2736 CVE-2015-2737 CVE-2015-2738 CVE-2015-2739 CVE-2015-2740 CVE-2015-2743 CVE-2015-3405 CVE-2015-4000 CVE-2015-5300 CVE-2015-7691 CVE-2015-7692 CVE-2015-7701 CVE-2015-7702 CVE-2015-7703 CVE-2015-7704 CVE-2015-7705 CVE-2015-7848 CVE-2015-7849 CVE-2015-7850 CVE-2015-7851 CVE-2015-7852 CVE-2015-7853 CVE-2015-7854 CVE-2015-7855 CVE-2015-7871 CVE-2015-7973 CVE-2015-7974 CVE-2015-7975 CVE-2015-7976 CVE-2015-7977 CVE-2015-7978 CVE-2015-7979 CVE-2015-8138 CVE-2015-8139 CVE-2015-8140 CVE-2015-8158 CVE-2015-8899 CVE-2016-10028 CVE-2016-10029 CVE-2016-10155 CVE-2016-1547 CVE-2016-1548 CVE-2016-1549 CVE-2016-1550 CVE-2016-1551 CVE-2016-2516 CVE-2016-2517 CVE-2016-2518 CVE-2016-2519 CVE-2016-4953 CVE-2016-4954 CVE-2016-4955 CVE-2016-4956 CVE-2016-4957 CVE-2016-9921 CVE-2016-9922 CVE-2017-2615 CVE-2017-2620 CVE-2017-5525 CVE-2017-5526 CVE-2017-5552 CVE-2017-5578 CVE-2017-5667 CVE-2017-5856 CVE-2017-5857 CVE-2017-5898 CVE-2018-4437 CVE-2018-4438 CVE-2018-4441 CVE-2018-4442 CVE-2018-4443 CVE-2018-4464 CVE-2018-5391 CVE-2018-5391 CVE-2019-10208 CVE-2019-12068 CVE-2019-12735 CVE-2019-15890 CVE-2019-3880 CVE-2019-6778 CVE-2019-6974 CVE-2019-7164 CVE-2019-7221 CVE-2019-7548 CVE-2019-9213 CVE-2020-14392 CVE-2020-14393 CVE-2020-1711 CVE-2020-1983 CVE-2020-35452 CVE-2020-7039 CVE-2020-8608 CVE-2021-26690 CVE-2021-26691 CVE-2021-30641 CVE-2021-31618 SUSE-SU-2015:1268-2 SUSE-SU-2016:3269-1 SUSE-SU-2017:0625-1 SUSE-SU-2019:0146-1 SUSE-SU-2019:1195-1 SUSE-SU-2019:1456-1 SUSE-SU-2019:2159-1 SUSE-SU-2019:2350-1 SUSE-SU-2020:1514-1 SUSE-SU-2020:2661-1 SUSE-SU-2021:2006-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information augeas-1.10.1-lp150.1 is installed OR augeas-lenses-1.10.1-lp150.1 is installed OR libaugeas0-1.10.1-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libIlmImf-2_2-23-2.2.1-lp151.4.6 is installed OR libIlmImf-2_2-23-32bit-2.2.1-lp151.4.6 is installed OR libIlmImfUtil-2_2-23-2.2.1-lp151.4.6 is installed OR libIlmImfUtil-2_2-23-32bit-2.2.1-lp151.4.6 is installed OR openexr-2.2.1-lp151.4.6 is installed OR openexr-devel-2.2.1-lp151.4.6 is installed OR openexr-doc-2.2.1-lp151.4.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND openssl-certs-1.97-0.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information MozillaFirefox-31.8.0esr-0.10 is installed OR MozillaFirefox-translations-31.8.0esr-0.10 is installed OR libfreebl3-3.19.2_CKBI_1.98-0.10 is installed OR libfreebl3-32bit-3.19.2_CKBI_1.98-0.10 is installed OR libsoftokn3-3.19.2_CKBI_1.98-0.10 is installed OR libsoftokn3-32bit-3.19.2_CKBI_1.98-0.10 is installed OR mozilla-nspr-4.10.8-0.5 is installed OR mozilla-nspr-32bit-4.10.8-0.5 is installed OR mozilla-nss-3.19.2_CKBI_1.98-0.10 is installed OR mozilla-nss-32bit-3.19.2_CKBI_1.98-0.10 is installed OR mozilla-nss-tools-3.19.2_CKBI_1.98-0.10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information colord-gtk-lang-0.1.26-6 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-10 is installed OR libcolord2-32bit-1.3.3-10 is installed OR libcolorhug2-1.3.3-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_85-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_23-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information bash-4.3-82 is installed OR bash-doc-4.3-82 is installed OR libreadline6-6.3-82 is installed OR libreadline6-32bit-6.3-82 is installed OR readline-doc-6.3-82 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information apache2-2.4.23-29.74.1 is installed OR apache2-doc-2.4.23-29.74.1 is installed OR apache2-example-pages-2.4.23-29.74.1 is installed OR apache2-prefork-2.4.23-29.74.1 is installed OR apache2-utils-2.4.23-29.74.1 is installed OR apache2-worker-2.4.23-29.74.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_176-94_88-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libsolv-0.6.36-2.16 is installed OR libsolv-tools-0.6.36-2.16 is installed OR libzypp-16.20.0-2.39 is installed OR perl-solv-0.6.36-2.16 is installed OR python-solv-0.6.36-2.16 is installed OR zypper-1.13.51-21.26 is installed OR zypper-log-1.13.51-21.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-SQLAlchemy-1.0.14-4.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed
BACK