Oval Definition:	oval:org.opensuse.security:def:60495
Revision Date: 2022-01-10 Version: 1 Title: Security update for apache2 (Important) (in QA) Description: This update for apache2 fixes the following issues: - CVE-2021-44224: Fixed NULL dereference or SSRF in forward proxy configurations (bsc#1193943) - CVE-2021-44790: Fixed a buffer overflow when parsing multipart content in mod_lua (bsc#1193942) This update also enables TLS 1.3 support, by building against openssl 1.1 [jsc#SLE-18664] This patch is currently in QA and not yet available for download. Family: unix Class: patch Status: Reference(s): 1013882 1055857 1057662 1059893 1061343 1081725 1083926 1083927 1091041 1094717 1101428 1101566 1101567 1101568 1101569 1101570 1101571 1101573 1101576 1101577 1101578 1101581 1101582 1101583 1101588 1101589 1101676 1101677 1101678 1103342 1112368 1112397 1112417 1112421 1112432 1115034 1116686 1118754 1119461 1119465 1120943 1131107 1132666 1134689 1136037 1138190 1142772 1145692 1146544 1146612 1150466 1150483 1152631 1153811 1154905 1155689 1155897 1155898 1156187 1157038 1157042 1157070 1157143 1157158 1157191 1157324 1157333 1157464 1158132 1158394 1158398 1158410 1158413 1158417 1158445 1158763 1158823 1158824 1158827 1158834 1158900 1158903 1158904 1158954 1160770 1171186 1171252 1171254 1171475 1171847 1172105 1172116 1172121 1173369 1193942 1193943 980830 982129 986534 CVE-2011-2489 CVE-2011-2490 CVE-2012-0862 CVE-2013-4314 CVE-2013-4342 CVE-2014-9116 CVE-2016-6328 CVE-2016-9843 CVE-2017-7544 CVE-2018-14349 CVE-2018-14350 CVE-2018-14351 CVE-2018-14352 CVE-2018-14353 CVE-2018-14354 CVE-2018-14355 CVE-2018-14356 CVE-2018-14357 CVE-2018-14358 CVE-2018-14359 CVE-2018-14360 CVE-2018-14361 CVE-2018-14362 CVE-2018-14363 CVE-2018-20030 CVE-2018-3058 CVE-2018-3063 CVE-2018-3064 CVE-2018-3066 CVE-2018-3143 CVE-2018-3156 CVE-2018-3174 CVE-2018-3251 CVE-2018-3282 CVE-2018-5729 CVE-2018-5730 CVE-2019-1010180 CVE-2019-10130 CVE-2019-14895 CVE-2019-15213 CVE-2019-16231 CVE-2019-18660 CVE-2019-18680 CVE-2019-18683 CVE-2019-18805 CVE-2019-18900 CVE-2019-19052 CVE-2019-19062 CVE-2019-19065 CVE-2019-19073 CVE-2019-19074 CVE-2019-19332 CVE-2019-19338 CVE-2019-19523 CVE-2019-19524 CVE-2019-19525 CVE-2019-19527 CVE-2019-19530 CVE-2019-19531 CVE-2019-19532 CVE-2019-19533 CVE-2019-19534 CVE-2019-19535 CVE-2019-19536 CVE-2019-19537 CVE-2019-2529 CVE-2019-2537 CVE-2019-9278 CVE-2020-0093 CVE-2020-12387 CVE-2020-12388 CVE-2020-12389 CVE-2020-12392 CVE-2020-12393 CVE-2020-12395 CVE-2020-12653 CVE-2020-12654 CVE-2020-12767 CVE-2020-13112 CVE-2020-13113 CVE-2020-13114 CVE-2020-15011 CVE-2020-15011 CVE-2020-6831 CVE-2021-44224 CVE-2021-44790 SUSE-SU-2018:0846-1 SUSE-SU-2018:2084-1 SUSE-SU-2019:1687-1 SUSE-SU-2019:2048-1 SUSE-SU-2019:2916-1 SUSE-SU-2020:0079-2 SUSE-SU-2020:1218-1 SUSE-SU-2020:1534-1 SUSE-SU-2020:2048-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND haproxy-2.0.5+git0.d905f49a-lp150.2.13 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information ncat-7.70-lp151.3.3 is installed OR ndiff-7.70-lp151.3.3 is installed OR nmap-7.70-lp151.3.3 is installed OR nping-7.70-lp151.3.3 is installed OR zenmap-7.70-lp151.3.3 is installed Definition Synopsis openSUSE Leap 15.1 NonFree is installed AND opera-67.0.3575.97-lp151.2.12 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information ghostscript-9.52-lp152.2.4 is installed OR ghostscript-devel-9.52-lp152.2.4 is installed OR ghostscript-mini-9.52-lp152.2.4 is installed OR ghostscript-mini-devel-9.52-lp152.2.4 is installed OR ghostscript-x11-9.52-lp152.2.4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information opie-2.4-724 is installed OR opie-32bit-2.4-724 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND mailman-2.1.17-3.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kernel-default-4.4.180-94.113 is installed OR kernel-default-base-4.4.180-94.113 is installed OR kernel-default-devel-4.4.180-94.113 is installed OR kernel-default-kgraft-4.4.180-94.113 is installed OR kernel-devel-4.4.180-94.113 is installed OR kernel-macros-4.4.180-94.113 is installed OR kernel-source-4.4.180-94.113 is installed OR kernel-syms-4.4.180-94.113 is installed OR kgraft-patch-4_4_180-94_113-default-1-4.5 is installed OR kgraft-patch-SLE12-SP3_Update_30-1-4.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libexif-0.6.22-8.9 is installed OR libexif12-0.6.22-8.9 is installed OR libexif12-32bit-0.6.22-8.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gnome-settings-daemon-3.20.1-50.5 is installed OR gnome-settings-daemon-lang-3.20.1-50.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND xrdp-0.9.0~git.1456906198.f422461-21.27 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND apache2-2.4.51-35.7.1 is installed OR apache2-doc-2.4.51-35.7.1 is installed OR apache2-example-pages-2.4.51-35.7.1 is installed OR apache2-prefork-2.4.51-35.7.1 is installed OR apache2-utils-2.4.51-35.7.1 is installed OR apache2-worker-2.4.51-35.7.1 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND apache2-2.4.51-35.7.1 is installed OR apache2-doc-2.4.51-35.7.1 is installed OR apache2-example-pages-2.4.51-35.7.1 is installed OR apache2-prefork-2.4.51-35.7.1 is installed OR apache2-utils-2.4.51-35.7.1 is installed OR apache2-worker-2.4.51-35.7.1 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libmysqlclient18-10.0.38-29.27 is installed OR mariadb-10.0.38-29.27 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information kernel-default-4.12.14-95.57 is installed OR kernel-default-base-4.12.14-95.57 is installed OR kernel-default-devel-4.12.14-95.57 is installed OR kernel-devel-4.12.14-95.57 is installed OR kernel-macros-4.12.14-95.57 is installed OR kernel-source-4.12.14-95.57 is installed OR kernel-syms-4.12.14-95.57 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information MozillaFirefox-68.8.0-109.119 is installed OR MozillaFirefox-translations-common-68.8.0-109.119 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND haproxy-1.6.11-11.3 is installed
BACK