Oval Definition:oval:org.opensuse.security:def:58324
Revision Date:2020-12-01Version:1
Title:Security update for apache2 (Moderate)
Description:

This update for apache2 fixes the following issues:

- CVE-2020-9490: Fixed a crash caused by a specially crafted value for the 'Cache-Digest' header in a HTTP/2 request (bsc#1175071). - CVE-2020-11985: IP address spoofing when proxying using mod_remoteip and mod_rewrite (bsc#1175072). - CVE-2020-11993: When trace/debug was enabled for the HTTP/2 module logging statements were made on the wrong connection (bsc#1175070).
Family:unixClass:patch
Status:Reference(s):1005522
1005523
1005524
1005525
1005526
1005527
1005528
1013882
1016712
1016714
1016715
1019380
1033109
1033111
1033112
1033113
1033118
1033120
1033126
1033127
1033128
1033129
1033131
1035082
1038438
1042804
1042805
1043960
1068032
1079152
1081741
1082962
1083650
1083900
1085185
1086400
1087007
1087012
1087036
1087086
1087095
1089895
1090534
1090955
1092497
1092552
1092813
1092904
1094033
1094353
1094823
1095042
1096140
1096242
1096281
1096728
1097356
1101676
1101677
1101678
1103342
1103411
1112368
1112397
1112417
1112421
1112432
1116686
1118277
1118754
1122319
1129180
1131863
1132666
1134156
1136037
1140359
1141670
1145559
1146882
1146884
1163933
1163985
1172186
1173902
1173994
1175070
1175071
1175072
973378
CVE-2015-9542
CVE-2016-0736
CVE-2016-10196
CVE-2016-10371
CVE-2016-2161
CVE-2016-5542
CVE-2016-5554
CVE-2016-5556
CVE-2016-5568
CVE-2016-5573
CVE-2016-5582
CVE-2016-5597
CVE-2016-8743
CVE-2016-9843
CVE-2017-13305
CVE-2017-18241
CVE-2017-18249
CVE-2017-5429
CVE-2017-5430
CVE-2017-5432
CVE-2017-5433
CVE-2017-5434
CVE-2017-5435
CVE-2017-5436
CVE-2017-5438
CVE-2017-5439
CVE-2017-5440
CVE-2017-5441
CVE-2017-5442
CVE-2017-5443
CVE-2017-5444
CVE-2017-5445
CVE-2017-5446
CVE-2017-5447
CVE-2017-5448
CVE-2017-5449
CVE-2017-5451
CVE-2017-5454
CVE-2017-5455
CVE-2017-5456
CVE-2017-5459
CVE-2017-5460
CVE-2017-5461
CVE-2017-5462
CVE-2017-5464
CVE-2017-5465
CVE-2017-5466
CVE-2017-5467
CVE-2017-5469
CVE-2017-5470
CVE-2017-5472
CVE-2017-7592
CVE-2017-7593
CVE-2017-7594
CVE-2017-7595
CVE-2017-7596
CVE-2017-7597
CVE-2017-7598
CVE-2017-7599
CVE-2017-7600
CVE-2017-7601
CVE-2017-7602
CVE-2017-7749
CVE-2017-7750
CVE-2017-7751
CVE-2017-7752
CVE-2017-7754
CVE-2017-7755
CVE-2017-7756
CVE-2017-7757
CVE-2017-7758
CVE-2017-7761
CVE-2017-7763
CVE-2017-7764
CVE-2017-7765
CVE-2017-7768
CVE-2017-7778
CVE-2017-9403
CVE-2017-9404
CVE-2018-1000199
CVE-2018-1000204
CVE-2018-1050
CVE-2018-1065
CVE-2018-10858
CVE-2018-1092
CVE-2018-1093
CVE-2018-1094
CVE-2018-1130
CVE-2018-19788
CVE-2018-3058
CVE-2018-3063
CVE-2018-3064
CVE-2018-3066
CVE-2018-3143
CVE-2018-3156
CVE-2018-3174
CVE-2018-3251
CVE-2018-3282
CVE-2018-3665
CVE-2018-5803
CVE-2018-5848
CVE-2018-7492
CVE-2019-11500
CVE-2019-12973
CVE-2019-14811
CVE-2019-14812
CVE-2019-14813
CVE-2019-14817
CVE-2019-2529
CVE-2019-2537
CVE-2019-3835
CVE-2019-3839
CVE-2019-6116
CVE-2020-11985
CVE-2020-11993
CVE-2020-14318
CVE-2020-14323
CVE-2020-1720
CVE-2020-8165
CVE-2020-9490
SUSE-SU-2016:2953-1
SUSE-SU-2017:0797-1
SUSE-SU-2017:1669-1
SUSE-SU-2017:2569-1
SUSE-SU-2018:1855-1
SUSE-SU-2019:0019-1
SUSE-SU-2019:0144-1
SUSE-SU-2020:0586-1
SUSE-SU-2020:1117-1
SUSE-SU-2020:2450-1
SUSE-SU-2020:2929-1
SUSE-SU-2020:3083-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND hardlink-1.0+git.e66999f-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • MozillaFirefox-60.8.0-lp151.2.10 is installed
  • OR MozillaFirefox-branding-upstream-60.8.0-lp151.2.10 is installed
  • OR MozillaFirefox-buildsymbols-60.8.0-lp151.2.10 is installed
  • OR MozillaFirefox-devel-60.8.0-lp151.2.10 is installed
  • OR MozillaFirefox-translations-common-60.8.0-lp151.2.10 is installed
  • OR MozillaFirefox-translations-other-60.8.0-lp151.2.10 is installed
  • OR libfreebl3-3.44.1-lp151.2.3 is installed
  • OR libfreebl3-32bit-3.44.1-lp151.2.3 is installed
  • OR libfreebl3-hmac-3.44.1-lp151.2.3 is installed
  • OR libfreebl3-hmac-32bit-3.44.1-lp151.2.3 is installed
  • OR libsoftokn3-3.44.1-lp151.2.3 is installed
  • OR libsoftokn3-32bit-3.44.1-lp151.2.3 is installed
  • OR libsoftokn3-hmac-3.44.1-lp151.2.3 is installed
  • OR libsoftokn3-hmac-32bit-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-32bit-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-certs-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-certs-32bit-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-devel-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-sysinit-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-sysinit-32bit-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-tools-3.44.1-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.121-36 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.121-36 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.121-36 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.121-36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libpolkit0-0.113-5.15 is installed
  • OR polkit-0.113-5.15 is installed
  • OR typelib-1_0-Polkit-1_0-0.113-5.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libdcerpc-atsvc0-4.2.4-28.29 is installed
  • OR samba-4.2.4-28.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kernel-default-4.4.121-92.85 is installed
  • OR kernel-default-base-4.4.121-92.85 is installed
  • OR kernel-default-devel-4.4.121-92.85 is installed
  • OR kernel-default-man-4.4.121-92.85 is installed
  • OR kernel-devel-4.4.121-92.85 is installed
  • OR kernel-macros-4.4.121-92.85 is installed
  • OR kernel-source-4.4.121-92.85 is installed
  • OR kernel-syms-4.4.121-92.85 is installed
  • OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed
  • OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • curl-7.37.0-36 is installed
  • OR libcurl4-7.37.0-36 is installed
  • OR libcurl4-32bit-7.37.0-36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • tomcat-8.0.53-29.32 is installed
  • OR tomcat-admin-webapps-8.0.53-29.32 is installed
  • OR tomcat-docs-webapp-8.0.53-29.32 is installed
  • OR tomcat-el-3_0-api-8.0.53-29.32 is installed
  • OR tomcat-javadoc-8.0.53-29.32 is installed
  • OR tomcat-jsp-2_3-api-8.0.53-29.32 is installed
  • OR tomcat-lib-8.0.53-29.32 is installed
  • OR tomcat-servlet-3_1-api-8.0.53-29.32 is installed
  • OR tomcat-webapps-8.0.53-29.32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_178-94_91-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_25-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_61-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_19-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libpython3_4m1_0-3.4.6-25.16 is installed
  • OR python3-3.4.6-25.16 is installed
  • OR python3-base-3.4.6-25.16 is installed
  • OR python3-curses-3.4.6-25.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libopenssl-1_0_0-devel-1.0.2p-2 is installed
  • OR libopenssl1_0_0-1.0.2p-2 is installed
  • OR libopenssl1_0_0-32bit-1.0.2p-2 is installed
  • OR libopenssl1_0_0-hmac-1.0.2p-2 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2p-2 is installed
  • OR openssl-1_0_0-1.0.2p-2 is installed
  • OR openssl-1_0_0-doc-1.0.2p-2 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • apache2-2.4.23-29.63 is installed
  • OR apache2-doc-2.4.23-29.63 is installed
  • OR apache2-example-pages-2.4.23-29.63 is installed
  • OR apache2-prefork-2.4.23-29.63 is installed
  • OR apache2-utils-2.4.23-29.63 is installed
  • OR apache2-worker-2.4.23-29.63 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • MozillaFirefox-68.9.0-109.123 is installed
  • OR MozillaFirefox-translations-common-68.9.0-109.123 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.8 is installed
  • OR rubygem-rails-html-sanitizer-1.0.3-8.8 is installed
    • BACK