Oval Definition:oval:org.opensuse.security:def:60753
Revision Date:2020-12-01Version:1
Title:Security update for apache2 (Moderate)
Description:

This update for apache2 fixes the following issues:

- CVE-2020-9490: Fixed a crash caused by a specially crafted value for the 'Cache-Digest' header in a HTTP/2 request (bsc#1175071). - CVE-2020-11985: IP address spoofing when proxying using mod_remoteip and mod_rewrite (bsc#1175072). - CVE-2020-11993: When trace/debug was enabled for the HTTP/2 module logging statements were made on the wrong connection (bsc#1175070).
Family:unixClass:patch
Status:Reference(s):1012382
1020413
1065600
1070767
1075697
1082943
1087092
1090435
1095218
1095219
1102959
1103429
1104467
1106929
1109137
1109160
1109248
1110949
1112758
1113660
1115034
1118367
1118368
1119019
1119843
1120489
1120691
1120902
1121713
1121805
1124235
1125315
1125446
1126389
1126772
1126773
1126805
1127082
1127155
1127561
1127725
1127731
1127961
1128166
1128452
1128565
1128696
1128756
1128893
1129080
1129179
1129237
1129238
1129239
1129240
1129241
1129413
1129414
1129415
1129416
1129417
1129418
1129419
1129581
1129770
1129923
1132665
1133037
1141619
1142772
1145692
1160305
1160498
1166238
1171740
1173100
1173455
1173659
1173869
1173902
1173942
1173963
1173994
1174157
1174247
1175070
1175071
1175072
1175259
1177613
CVE-2018-11233
CVE-2018-11235
CVE-2018-16840
CVE-2018-16842
CVE-2018-17204
CVE-2018-17205
CVE-2018-17206
CVE-2018-17456
CVE-2018-20217
CVE-2018-5741
CVE-2019-1010006
CVE-2019-1010180
CVE-2019-11459
CVE-2019-14895
CVE-2019-16746
CVE-2019-17015
CVE-2019-17016
CVE-2019-17017
CVE-2019-17021
CVE-2019-17022
CVE-2019-17024
CVE-2019-17026
CVE-2019-17639
CVE-2019-19447
CVE-2019-2024
CVE-2019-20503
CVE-2019-9213
CVE-2019-9458
CVE-2020-11668
CVE-2020-11985
CVE-2020-11993
CVE-2020-14318
CVE-2020-14323
CVE-2020-14331
CVE-2020-14383
CVE-2020-14556
CVE-2020-14577
CVE-2020-14578
CVE-2020-14579
CVE-2020-14581
CVE-2020-14583
CVE-2020-14593
CVE-2020-14621
CVE-2020-15049
CVE-2020-6805
CVE-2020-6806
CVE-2020-6807
CVE-2020-6811
CVE-2020-6812
CVE-2020-6814
CVE-2020-8616
CVE-2020-8617
CVE-2020-9490
SUSE-SU-2018:1566-1
SUSE-SU-2019:0111-1
SUSE-SU-2019:0801-1
SUSE-SU-2019:2080-2
SUSE-SU-2019:2916-1
SUSE-SU-2020:0068-1
SUSE-SU-2020:0717-1
SUSE-SU-2020:1914-1
SUSE-SU-2020:1946-1
SUSE-SU-2020:2450-1
SUSE-SU-2020:2498-1
SUSE-SU-2020:3093-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-LTSS
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • opensc-0.18.0-lp150.2.9 is installed
  • OR opensc-32bit-0.18.0-lp150.2.9 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libpmi0-18.08.8-lp151.2.3 is installed
  • OR libslurm33-18.08.8-lp151.2.3 is installed
  • OR perl-slurm-18.08.8-lp151.2.3 is installed
  • OR slurm-18.08.8-lp151.2.3 is installed
  • OR slurm-auth-none-18.08.8-lp151.2.3 is installed
  • OR slurm-config-18.08.8-lp151.2.3 is installed
  • OR slurm-config-man-18.08.8-lp151.2.3 is installed
  • OR slurm-cray-18.08.8-lp151.2.3 is installed
  • OR slurm-devel-18.08.8-lp151.2.3 is installed
  • OR slurm-doc-18.08.8-lp151.2.3 is installed
  • OR slurm-hdf5-18.08.8-lp151.2.3 is installed
  • OR slurm-lua-18.08.8-lp151.2.3 is installed
  • OR slurm-munge-18.08.8-lp151.2.3 is installed
  • OR slurm-node-18.08.8-lp151.2.3 is installed
  • OR slurm-openlava-18.08.8-lp151.2.3 is installed
  • OR slurm-pam_slurm-18.08.8-lp151.2.3 is installed
  • OR slurm-plugins-18.08.8-lp151.2.3 is installed
  • OR slurm-seff-18.08.8-lp151.2.3 is installed
  • OR slurm-sjstat-18.08.8-lp151.2.3 is installed
  • OR slurm-slurmdbd-18.08.8-lp151.2.3 is installed
  • OR slurm-sql-18.08.8-lp151.2.3 is installed
  • OR slurm-sview-18.08.8-lp151.2.3 is installed
  • OR slurm-torque-18.08.8-lp151.2.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • chromedriver-84.0.4147.89-lp152.2.6 is installed
  • OR chromium-84.0.4147.89-lp152.2.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • git-2.12.3-27.14 is installed
  • OR git-core-2.12.3-27.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • bind-9.9.9P1-63.17 is installed
  • OR bind-chrootenv-9.9.9P1-63.17 is installed
  • OR bind-doc-9.9.9P1-63.17 is installed
  • OR bind-libs-9.9.9P1-63.17 is installed
  • OR bind-libs-32bit-9.9.9P1-63.17 is installed
  • OR bind-utils-9.9.9P1-63.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr6.15-30.72 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr6.15-30.72 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr6.15-30.72 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr6.15-30.72 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_113-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_30-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • curl-7.37.0-37.31 is installed
  • OR libcurl4-7.37.0-37.31 is installed
  • OR libcurl4-32bit-7.37.0-37.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • fontconfig-2.11.1-7 is installed
  • OR fontconfig-32bit-2.11.1-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • kernel-default-4.12.14-95.57 is installed
  • OR kernel-default-base-4.12.14-95.57 is installed
  • OR kernel-default-devel-4.12.14-95.57 is installed
  • OR kernel-default-man-4.12.14-95.57 is installed
  • OR kernel-devel-4.12.14-95.57 is installed
  • OR kernel-macros-4.12.14-95.57 is installed
  • OR kernel-source-4.12.14-95.57 is installed
  • OR kernel-syms-4.12.14-95.57 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • apache2-2.4.23-29.63 is installed
  • OR apache2-doc-2.4.23-29.63 is installed
  • OR apache2-example-pages-2.4.23-29.63 is installed
  • OR apache2-prefork-2.4.23-29.63 is installed
  • OR apache2-utils-2.4.23-29.63 is installed
  • OR apache2-worker-2.4.23-29.63 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • ardana-db-9.0+git.1572311426.a6dc2fd-3.13 is installed
  • OR ardana-keystone-9.0+git.1573069087.15ffd1c-3.13 is installed
  • OR ardana-neutron-9.0+git.1572019823.6650494-3.16 is installed
  • OR ardana-nova-9.0+git.1572618171.4460843-3.13 is installed
  • OR openstack-barbican-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-api-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-keystone-listener-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-retry-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-worker-7.0.1~dev21-3.3 is installed
  • OR openstack-heat-templates-0.0.0+git.1553459627.948e8cc-3.3 is installed
  • OR openstack-keystone-14.1.1~dev28-3.16 is installed
  • OR openstack-neutron-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-dhcp-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-gbp-5.0.1~dev476-3.13 is installed
  • OR openstack-neutron-ha-tool-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-l3-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-lbaas-13.0.1~dev16-3.13 is installed
  • OR openstack-neutron-lbaas-agent-13.0.1~dev16-3.13 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-macvtap-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-metadata-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-metering-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-server-13.0.6~dev8-3.16 is installed
  • OR openstack-nova-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-api-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-cells-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-compute-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-conductor-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-console-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-novncproxy-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-placement-api-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-scheduler-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-serialproxy-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-vncproxy-18.2.4~dev22-3.16 is installed
  • OR openstack-octavia-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-amphora-agent-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-api-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-health-manager-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-housekeeping-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-worker-3.2.1~dev3-3.16 is installed
  • OR openstack-sahara-9.0.2~dev14-3.6 is installed
  • OR openstack-sahara-api-9.0.2~dev14-3.6 is installed
  • OR openstack-sahara-engine-9.0.2~dev14-3.6 is installed
  • OR python-barbican-7.0.1~dev21-3.3 is installed
  • OR python-keystone-14.1.1~dev28-3.16 is installed
  • OR python-neutron-13.0.6~dev8-3.16 is installed
  • OR python-neutron-gbp-5.0.1~dev476-3.13 is installed
  • OR python-neutron-lbaas-13.0.1~dev16-3.13 is installed
  • OR python-nova-18.2.4~dev22-3.16 is installed
  • OR python-octavia-3.2.1~dev3-3.16 is installed
  • OR python-psutil-5.4.6-3.3 is installed
  • OR python-sahara-9.0.2~dev14-3.6 is installed
  • OR release-notes-suse-openstack-cloud-9.20191025-3.15 is installed
  • OR venv-openstack-barbican-7.0.1~dev21-3.13 is installed
  • OR venv-openstack-barbican-x86_64-7.0.1~dev21-3.13 is installed
  • OR venv-openstack-cinder-13.0.8~dev8-3.13 is installed
  • OR venv-openstack-cinder-x86_64-13.0.8~dev8-3.13 is installed
  • OR venv-openstack-designate-7.0.1~dev22-3.13 is installed
  • OR venv-openstack-designate-x86_64-7.0.1~dev22-3.13 is installed
  • OR venv-openstack-heat-11.0.3~dev23-3.13 is installed
  • OR venv-openstack-heat-x86_64-11.0.3~dev23-3.13 is installed
  • OR venv-openstack-keystone-14.1.1~dev28-3.13 is installed
  • OR venv-openstack-keystone-x86_64-14.1.1~dev28-3.13 is installed
  • OR venv-openstack-magnum-7.1.1~dev28-4.13 is installed
  • OR venv-openstack-magnum-x86_64-7.1.1~dev28-4.13 is installed
  • OR venv-openstack-manila-7.3.1~dev15-3.13 is installed
  • OR venv-openstack-manila-x86_64-7.3.1~dev15-3.13 is installed
  • OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.13 is installed
  • OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.13 is installed
  • OR venv-openstack-neutron-13.0.6~dev8-6.13 is installed
  • OR venv-openstack-neutron-x86_64-13.0.6~dev8-6.13 is installed
  • OR venv-openstack-nova-18.2.4~dev22-3.13 is installed
  • OR venv-openstack-nova-x86_64-18.2.4~dev22-3.13 is installed
  • OR venv-openstack-octavia-3.2.1~dev3-4.13 is installed
  • OR venv-openstack-octavia-x86_64-3.2.1~dev3-4.13 is installed
  • OR venv-openstack-sahara-9.0.2~dev14-3.13 is installed
  • OR venv-openstack-sahara-x86_64-9.0.2~dev14-3.13 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • evince-3.20.2-6.27 is installed
  • OR evince-browser-plugin-3.20.2-6.27 is installed
  • OR evince-lang-3.20.2-6.27 is installed
  • OR evince-plugin-djvudocument-3.20.2-6.27 is installed
  • OR evince-plugin-dvidocument-3.20.2-6.27 is installed
  • OR evince-plugin-pdfdocument-3.20.2-6.27 is installed
  • OR evince-plugin-psdocument-3.20.2-6.27 is installed
  • OR evince-plugin-tiffdocument-3.20.2-6.27 is installed
  • OR evince-plugin-xpsdocument-3.20.2-6.27 is installed
  • OR libevdocument3-4-3.20.2-6.27 is installed
  • OR libevview3-3-3.20.2-6.27 is installed
  • OR nautilus-evince-3.20.2-6.27 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.28.3-2.56 is installed
  • OR libwebkit2gtk-4_0-37-2.28.3-2.56 is installed
  • OR libwebkit2gtk3-lang-2.28.3-2.56 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.28.3-2.56 is installed
  • OR typelib-1_0-WebKit2-4_0-2.28.3-2.56 is installed
  • OR typelib-1_0-WebKit2WebExtension-4_0-2.28.3-2.56 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.28.3-2.56 is installed
  • OR webkit2gtk3-2.28.3-2.56 is installed
    • BACK