Oval Definition:oval:org.opensuse.security:def:5821
Revision Date:2021-08-25Version:1
Title:Security update for jetty-minimal (Moderate)
Description:

This update for jetty-minimal fixes the following issues:

- Update to version 9.4.43.v20210629 - CVE-2021-34429: URIs can be crafted using some encoded characters to access the content of the WEB-INF directory and/or bypass some security constraints. (bsc#1188438)
Family:unixClass:patch
Status:Reference(s):1188438
CVE-2002-2443
CVE-2006-0855
CVE-2007-1669
CVE-2009-0844
CVE-2009-0845
CVE-2009-0846
CVE-2009-0847
CVE-2009-2473
CVE-2009-2474
CVE-2009-3295
CVE-2009-4212
CVE-2010-0283
CVE-2010-0628
CVE-2010-1320
CVE-2010-1321
CVE-2010-1322
CVE-2010-1323
CVE-2010-1324
CVE-2010-2522
CVE-2010-2523
CVE-2010-4020
CVE-2010-4021
CVE-2010-4022
CVE-2011-0281
CVE-2011-0282
CVE-2011-0284
CVE-2011-0285
CVE-2011-0460
CVE-2011-1527
CVE-2011-1528
CVE-2011-1529
CVE-2011-1530
CVE-2011-3200
CVE-2012-0786
CVE-2012-1012
CVE-2012-1013
CVE-2012-1016
CVE-2013-0221
CVE-2013-0222
CVE-2013-0223
CVE-2013-1415
CVE-2013-1417
CVE-2013-1418
CVE-2013-1984
CVE-2013-1995
CVE-2013-1998
CVE-2013-4314
CVE-2013-4758
CVE-2013-6370
CVE-2013-6371
CVE-2014-3230
CVE-2014-3634
CVE-2014-3683
CVE-2014-4341
CVE-2014-4342
CVE-2014-4343
CVE-2014-4344
CVE-2014-4345
CVE-2014-5351
CVE-2015-1038
CVE-2015-4041
CVE-2015-4042
CVE-2016-1602
CVE-2016-2335
CVE-2016-5104
CVE-2016-7945
CVE-2016-7946
CVE-2016-7969
CVE-2016-7972
CVE-2021-34429
Platform(s):openSUSE 13.1
openSUSE 13.1 NonFree
openSUSE 13.2
openSUSE 13.2 NonFree
SUSE Linux Enterprise Build System Kit 12
SUSE Linux Enterprise Build System Kit 12 SP1
SUSE Linux Enterprise Build System Kit 12 SP2
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP4
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 12 SP3
SUSE Linux Enterprise Workstation Extension 12 SP4
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 is installed
  • AND Package Information
  • gcc5-5.3.1+r233831-9 is installed
  • OR gcc5-go-5.3.1+r233831-9 is installed
  • OR libgo7-5.3.1+r233831-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP1 is installed
  • AND Package Information
  • krb5-mini-1.12.1-22 is installed
  • OR krb5-mini-devel-1.12.1-22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP2 is installed
  • AND Package Information
  • ghostscript-mini-9.15-17 is installed
  • OR ghostscript-mini-devel-9.15-17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • krb5-1.12.1-6 is installed
  • OR krb5-32bit-1.12.1-6 is installed
  • OR krb5-client-1.12.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND perl-LWP-Protocol-https-6.04-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • coreutils-8.25-12 is installed
  • OR coreutils-lang-8.25-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • cracklib-2.9.0-7 is installed
  • OR libcrack2-2.9.0-7 is installed
  • OR libcrack2-32bit-2.9.0-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_51-52_39-default-4-2.2 is installed
  • OR kgraft-patch-3_12_51-52_39-xen-4-2.2 is installed
  • OR kgraft-patch-SLE12_Update_11-4-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 SP1 is installed
  • AND Package Information
  • compat-openssl098-0.9.8j-102.1 is installed
  • OR libopenssl0_9_8-0.9.8j-102.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 is installed
  • AND python-PyYAML-3.10-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP1 is installed
  • AND Package Information
  • libpacemaker3-1.1.13-20 is installed
  • OR pacemaker-1.1.13-20 is installed
  • OR pacemaker-cli-1.1.13-20 is installed
  • OR pacemaker-cts-1.1.13-20 is installed
  • OR pacemaker-remote-1.1.13-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND Package Information
  • ctdb-4.4.2-38.6 is installed
  • OR samba-4.4.2-38.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND haproxy-1.6.11-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND conntrack-tools-1.4.2-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP5 is installed
  • AND python-requests-2.18.2-8.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND autofs-5.1.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_43-52_6-default-1-2 is installed
  • OR kgraft-patch-3_12_43-52_6-xen-1-2 is installed
  • OR kgraft-patch-SLE12_Update_5-1-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND Package Information
  • nodejs4-4.5.0-5 is installed
  • OR nodejs4-devel-4.5.0-5 is installed
  • OR nodejs4-docs-4.5.0-5 is installed
  • OR npm4-4.5.0-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 is installed
  • AND systemtap-0.7.1-42.5.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND LibVNCServer-0.9.1-154.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2-LTSS is installed
  • AND Package Information
  • MozillaFirefox-31.2.0esr-0.11.11.1 is installed
  • OR MozillaFirefox-branding-SLED-31.0-0.5.5.1 is installed
  • OR MozillaFirefox-translations-31.2.0esr-0.11.11.1 is installed
  • OR libfreebl3-3.17.2-0.3.1 is installed
  • OR libfreebl3-32bit-3.17.2-0.3.1 is installed
  • OR mozilla-nspr-4.10.7-0.3.3 is installed
  • OR mozilla-nspr-32bit-4.10.7-0.3.3 is installed
  • OR mozilla-nspr-devel-4.10.7-0.3.3 is installed
  • OR mozilla-nss-3.17.2-0.3.1 is installed
  • OR mozilla-nss-32bit-3.17.2-0.3.1 is installed
  • OR mozilla-nss-devel-3.17.2-0.3.1 is installed
  • OR mozilla-nss-tools-3.17.2-0.3.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • evolution-data-server-2.28.2-0.32.1 is installed
  • OR evolution-data-server-32bit-2.28.2-0.32.1 is installed
  • OR evolution-data-server-lang-2.28.2-0.32.1 is installed
  • OR evolution-data-server-x86-2.28.2-0.32.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • evolution-data-server-2.28.2-0.32.1 is installed
  • OR evolution-data-server-32bit-2.28.2-0.32.1 is installed
  • OR evolution-data-server-lang-2.28.2-0.32.1 is installed
  • OR evolution-data-server-x86-2.28.2-0.32.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • Mesa-9.0.3-0.17.1 is installed
  • OR Mesa-32bit-9.0.3-0.17.1 is installed
  • OR Mesa-x86-9.0.3-0.17.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND Package Information
  • PolicyKit-0.9-14.43.1 is installed
  • OR PolicyKit-32bit-0.9-14.43.1 is installed
  • OR PolicyKit-doc-0.9-14.43.1 is installed
  • OR PolicyKit-x86-0.9-14.43.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • accountsservice-0.6.35-1 is installed
  • OR accountsservice-lang-0.6.35-1 is installed
  • OR libaccountsservice0-0.6.35-1 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.35-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND apache-commons-httpclient-3.1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • accountsservice-0.6.42-14 is installed
  • OR accountsservice-lang-0.6.42-14 is installed
  • OR libaccountsservice0-0.6.42-14 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libsnmp30-5.7.3-6.3 is installed
  • OR libsnmp30-32bit-5.7.3-6.3 is installed
  • OR net-snmp-5.7.3-6.3 is installed
  • OR perl-SNMP-5.7.3-6.3 is installed
  • OR snmp-mibs-5.7.3-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • colord-gtk-lang-0.1.26-6 is installed
  • OR libcolord-gtk1-0.1.26-6 is installed
  • OR libcolord2-1.3.3-10 is installed
  • OR libcolorhug2-1.3.3-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed
  • AND Package Information
  • MozillaFirefox-60.7.2-109.80 is installed
  • OR MozillaFirefox-devel-60.7.2-109.80 is installed
  • OR MozillaFirefox-translations-common-60.7.2-109.80 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed
  • AND ucode-intel-20180425-13.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND Package Information
  • curl-7.19.7-1.46.1 is installed
  • OR libcurl-devel-7.19.7-1.46.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • OpenEXR-32bit-1.6.1-83.17.1 is installed
  • OR OpenEXR-devel-1.6.1-83.17.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND Package Information
  • FastCGI-2.4.0-167 is installed
  • OR perl-FastCGI-2.4.0-167 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-8 is installed
  • OR ImageMagick-devel-6.8.8.1-8 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-8 is installed
  • OR libMagick++-devel-6.8.8.1-8 is installed
  • OR perl-PerlMagick-6.8.8.1-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND cyrus-sasl-devel-2.1.26-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND obs-service-source_validator-0.7-9.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND bogofilter-1.2.4-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND bogofilter-1.2.4-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND Package Information
  • gcc48-gij-4.8.5-30 is installed
  • OR gcc48-gij-32bit-4.8.5-30 is installed
  • OR libgcj48-4.8.5-30 is installed
  • OR libgcj48-32bit-4.8.5-30 is installed
  • OR libgcj48-jar-4.8.5-30 is installed
  • OR libgcj_bc1-4.8.5-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • AND Package Information
  • empathy-3.12.12-7 is installed
  • OR empathy-lang-3.12.12-7 is installed
  • OR telepathy-mission-control-plugin-goa-3.12.12-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND Package Information
  • NetworkManager-1.0.12-13.6 is installed
  • OR NetworkManager-lang-1.0.12-13.6 is installed
  • OR typelib-1_0-NM-1_0-1.0.12-13.6 is installed
    • BACK