Oval Definition:	oval:org.opensuse.security:def:57514
Revision Date: 2021-10-06 Version: 1 Title: Security update for apache2 (Important) Description: This update for apache2 fixes the following issues: - CVE-2021-40438: Fixed a SRF via a crafted request uri-path. (bsc#1190703) - CVE-2021-39275: Fixed an out-of-bounds write in ap_escape_quotes() via malicious input. (bsc#1190666) - CVE-2021-34798: Fixed a NULL pointer dereference via malformed requests. (bsc#1190669) Family: unix Class: patch Status: Reference(s): 1005591 1035905 1041783 1042802 1042803 1043088 1045719 1045721 1072947 1077003 1077006 1078662 1080740 1084300 1102682 1136446 1137597 1140747 1145092 1153108 1156334 1159646 1160968 1190666 1190669 1190703 866902 882089 896023 901317 903850 903967 903970 905465 905467 906439 934119 952474 972468 CVE-2008-4989 CVE-2009-3700 CVE-2009-3826 CVE-2011-1761 CVE-2011-4128 CVE-2012-0390 CVE-2012-1569 CVE-2012-1573 CVE-2013-4233 CVE-2013-4234 CVE-2014-0092 CVE-2014-1959 CVE-2014-2977 CVE-2014-2978 CVE-2014-3466 CVE-2014-8564 CVE-2014-8594 CVE-2014-8595 CVE-2014-8866 CVE-2014-8867 CVE-2014-9030 CVE-2015-0294 CVE-2015-3622 CVE-2015-6251 CVE-2015-7995 CVE-2015-9019 CVE-2016-0636 CVE-2016-4738 CVE-2017-5029 CVE-2017-7511 CVE-2017-7515 CVE-2017-9406 CVE-2017-9408 CVE-2017-9775 CVE-2017-9776 CVE-2018-1000024 CVE-2018-1000027 CVE-2018-5390 CVE-2018-7738 CVE-2019-10208 CVE-2019-10220 CVE-2019-11477 CVE-2019-11478 CVE-2019-15917 CVE-2019-17571 CVE-2019-3846 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2659 CVE-2021-34798 CVE-2021-39275 CVE-2021-40438 SUSE-SU-2016:0956-1 SUSE-SU-2017:1313-1 SUSE-SU-2017:1999-1 SUSE-SU-2018:0636-1 SUSE-SU-2019:0390-1 SUSE-SU-2019:1948-1 SUSE-SU-2019:2159-1 SUSE-SU-2019:2230-1 SUSE-SU-2019:3233-1 SUSE-SU-2020:0054-1 SUSE-SU-2020:0261-1 SUSE-SU-2021:3299-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information gnome-keyring-3.20.1-lp150.2 is installed OR gnome-keyring-lang-3.20.1-lp150.2 is installed OR gnome-keyring-pam-3.20.1-lp150.2 is installed OR libgck-modules-gnome-keyring-3.20.1-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libwireshark9-2.4.15-lp151.2.3 is installed OR libwiretap7-2.4.15-lp151.2.3 is installed OR libwscodecs1-2.4.15-lp151.2.3 is installed OR libwsutil8-2.4.15-lp151.2.3 is installed OR wireshark-2.4.15-lp151.2.3 is installed OR wireshark-devel-2.4.15-lp151.2.3 is installed OR wireshark-ui-qt-2.4.15-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information xen-4.2.5_02-0.7 is installed OR xen-doc-html-4.2.5_02-0.7 is installed OR xen-doc-pdf-4.2.5_02-0.7 is installed OR xen-kmp-default-4.2.5_02_3.0.101_0.40-0.7 is installed OR xen-libs-4.2.5_02-0.7 is installed OR xen-libs-32bit-4.2.5_02-0.7 is installed OR xen-tools-4.2.5_02-0.7 is installed OR xen-tools-domU-4.2.5_02-0.7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information java-1_7_0-openjdk-1.7.0.99-0.20 is installed OR java-1_7_0-openjdk-demo-1.7.0.99-0.20 is installed OR java-1_7_0-openjdk-devel-1.7.0.99-0.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_110-default-7-2 is installed OR kgraft-patch-3_12_74-60_64_110-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_33-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libopenssl-devel-1.0.2j-60.30 is installed OR libopenssl1_0_0-1.0.2j-60.30 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.30 is installed OR openssl-1.0.2j-60.30 is installed OR openssl-doc-1.0.2j-60.30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-default-4.4.121-92.73 is installed OR kernel-default-base-4.4.121-92.73 is installed OR kernel-default-devel-4.4.121-92.73 is installed OR kernel-devel-4.4.121-92.73 is installed OR kernel-macros-4.4.121-92.73 is installed OR kernel-source-4.4.121-92.73 is installed OR kernel-syms-4.4.121-92.73 is installed OR kgraft-patch-4_4_121-92_73-default-1-3.3 is installed OR kgraft-patch-SLE12-SP2_Update_21-1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_92-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_24-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information bzip2-1.0.6-29 is installed OR bzip2-doc-1.0.6-29 is installed OR libbz2-1-1.0.6-29 is installed OR libbz2-1-32bit-1.0.6-29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information apache2-2.4.23-29.80.1 is installed OR apache2-doc-2.4.23-29.80.1 is installed OR apache2-example-pages-2.4.23-29.80.1 is installed OR apache2-prefork-2.4.23-29.80.1 is installed OR apache2-utils-2.4.23-29.80.1 is installed OR apache2-worker-2.4.23-29.80.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information python-PyYAML-5.1.2-26.12 is installed OR python3-PyYAML-5.1.2-26.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libpng16-1.6.8-15.5 is installed OR libpng16-16-1.6.8-15.5 is installed OR libpng16-16-32bit-1.6.8-15.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information gpg2-2.0.24-9.8 is installed OR gpg2-lang-2.0.24-9.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND axis-1.4-290.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information libblkid1-2.28-44.18 is installed OR libblkid1-32bit-2.28-44.18 is installed OR libfdisk1-2.28-44.18 is installed OR libmount1-2.28-44.18 is installed OR libmount1-32bit-2.28-44.18 is installed OR libsmartcols1-2.28-44.18 is installed OR libuuid1-2.28-44.18 is installed OR libuuid1-32bit-2.28-44.18 is installed OR python-libmount-2.28-44.18 is installed OR util-linux-2.28-44.18 is installed OR util-linux-lang-2.28-44.18 is installed OR util-linux-systemd-2.28-44.18 is installed OR uuidd-2.28-44.18 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libpython3_4m1_0-3.4.6-25.29 is installed OR python3-3.4.6-25.29 is installed OR python3-base-3.4.6-25.29 is installed OR python3-curses-3.4.6-25.29 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND python-SQLAlchemy-1.1.12-3.5 is installed
BACK