Oval Definition:	oval:org.opensuse.security:def:60753
Revision Date: 2020-12-01 Version: 1 Title: Security update for apache2 (Moderate) Description: This update for apache2 fixes the following issues: - CVE-2020-9490: Fixed a crash caused by a specially crafted value for the 'Cache-Digest' header in a HTTP/2 request (bsc#1175071). - CVE-2020-11985: IP address spoofing when proxying using mod_remoteip and mod_rewrite (bsc#1175072). - CVE-2020-11993: When trace/debug was enabled for the HTTP/2 module logging statements were made on the wrong connection (bsc#1175070). Family: unix Class: patch Status: Reference(s): 1012382 1020413 1065600 1070767 1075697 1082943 1087092 1090435 1095218 1095219 1102959 1103429 1104467 1106929 1109137 1109160 1109248 1110949 1112758 1113660 1115034 1118367 1118368 1119019 1119843 1120489 1120691 1120902 1121713 1121805 1124235 1125315 1125446 1126389 1126772 1126773 1126805 1127082 1127155 1127561 1127725 1127731 1127961 1128166 1128452 1128565 1128696 1128756 1128893 1129080 1129179 1129237 1129238 1129239 1129240 1129241 1129413 1129414 1129415 1129416 1129417 1129418 1129419 1129581 1129770 1129923 1132665 1133037 1141619 1142772 1145692 1160305 1160498 1166238 1171740 1173100 1173455 1173659 1173869 1173902 1173942 1173963 1173994 1174157 1174247 1175070 1175071 1175072 1175259 1177613 CVE-2018-11233 CVE-2018-11235 CVE-2018-16840 CVE-2018-16842 CVE-2018-17204 CVE-2018-17205 CVE-2018-17206 CVE-2018-17456 CVE-2018-20217 CVE-2018-5741 CVE-2019-1010006 CVE-2019-1010180 CVE-2019-11459 CVE-2019-14895 CVE-2019-16746 CVE-2019-17015 CVE-2019-17016 CVE-2019-17017 CVE-2019-17021 CVE-2019-17022 CVE-2019-17024 CVE-2019-17026 CVE-2019-17639 CVE-2019-19447 CVE-2019-2024 CVE-2019-20503 CVE-2019-9213 CVE-2019-9458 CVE-2020-11668 CVE-2020-11985 CVE-2020-11993 CVE-2020-14318 CVE-2020-14323 CVE-2020-14331 CVE-2020-14383 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-15049 CVE-2020-6805 CVE-2020-6806 CVE-2020-6807 CVE-2020-6811 CVE-2020-6812 CVE-2020-6814 CVE-2020-8616 CVE-2020-8617 CVE-2020-9490 SUSE-SU-2018:1566-1 SUSE-SU-2019:0111-1 SUSE-SU-2019:0801-1 SUSE-SU-2019:2080-2 SUSE-SU-2019:2916-1 SUSE-SU-2020:0068-1 SUSE-SU-2020:0717-1 SUSE-SU-2020:1914-1 SUSE-SU-2020:1946-1 SUSE-SU-2020:2450-1 SUSE-SU-2020:2498-1 SUSE-SU-2020:3093-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information opensc-0.18.0-lp150.2.9 is installed OR opensc-32bit-0.18.0-lp150.2.9 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libpmi0-18.08.8-lp151.2.3 is installed OR libslurm33-18.08.8-lp151.2.3 is installed OR perl-slurm-18.08.8-lp151.2.3 is installed OR slurm-18.08.8-lp151.2.3 is installed OR slurm-auth-none-18.08.8-lp151.2.3 is installed OR slurm-config-18.08.8-lp151.2.3 is installed OR slurm-config-man-18.08.8-lp151.2.3 is installed OR slurm-cray-18.08.8-lp151.2.3 is installed OR slurm-devel-18.08.8-lp151.2.3 is installed OR slurm-doc-18.08.8-lp151.2.3 is installed OR slurm-hdf5-18.08.8-lp151.2.3 is installed OR slurm-lua-18.08.8-lp151.2.3 is installed OR slurm-munge-18.08.8-lp151.2.3 is installed OR slurm-node-18.08.8-lp151.2.3 is installed OR slurm-openlava-18.08.8-lp151.2.3 is installed OR slurm-pam_slurm-18.08.8-lp151.2.3 is installed OR slurm-plugins-18.08.8-lp151.2.3 is installed OR slurm-seff-18.08.8-lp151.2.3 is installed OR slurm-sjstat-18.08.8-lp151.2.3 is installed OR slurm-slurmdbd-18.08.8-lp151.2.3 is installed OR slurm-sql-18.08.8-lp151.2.3 is installed OR slurm-sview-18.08.8-lp151.2.3 is installed OR slurm-torque-18.08.8-lp151.2.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information chromedriver-84.0.4147.89-lp152.2.6 is installed OR chromium-84.0.4147.89-lp152.2.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information bind-9.9.9P1-63.17 is installed OR bind-chrootenv-9.9.9P1-63.17 is installed OR bind-doc-9.9.9P1-63.17 is installed OR bind-libs-9.9.9P1-63.17 is installed OR bind-libs-32bit-9.9.9P1-63.17 is installed OR bind-utils-9.9.9P1-63.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.15-30.72 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.15-30.72 is installed OR java-1_8_0-ibm-devel-1.8.0_sr6.15-30.72 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.15-30.72 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_113-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_30-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information curl-7.37.0-37.31 is installed OR libcurl4-7.37.0-37.31 is installed OR libcurl4-32bit-7.37.0-37.31 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information fontconfig-2.11.1-7 is installed OR fontconfig-32bit-2.11.1-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information kernel-default-4.12.14-95.57 is installed OR kernel-default-base-4.12.14-95.57 is installed OR kernel-default-devel-4.12.14-95.57 is installed OR kernel-default-man-4.12.14-95.57 is installed OR kernel-devel-4.12.14-95.57 is installed OR kernel-macros-4.12.14-95.57 is installed OR kernel-source-4.12.14-95.57 is installed OR kernel-syms-4.12.14-95.57 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information apache2-2.4.23-29.63 is installed OR apache2-doc-2.4.23-29.63 is installed OR apache2-example-pages-2.4.23-29.63 is installed OR apache2-prefork-2.4.23-29.63 is installed OR apache2-utils-2.4.23-29.63 is installed OR apache2-worker-2.4.23-29.63 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information ardana-db-9.0+git.1572311426.a6dc2fd-3.13 is installed OR ardana-keystone-9.0+git.1573069087.15ffd1c-3.13 is installed OR ardana-neutron-9.0+git.1572019823.6650494-3.16 is installed OR ardana-nova-9.0+git.1572618171.4460843-3.13 is installed OR openstack-barbican-7.0.1~dev21-3.3 is installed OR openstack-barbican-api-7.0.1~dev21-3.3 is installed OR openstack-barbican-keystone-listener-7.0.1~dev21-3.3 is installed OR openstack-barbican-retry-7.0.1~dev21-3.3 is installed OR openstack-barbican-worker-7.0.1~dev21-3.3 is installed OR openstack-heat-templates-0.0.0+git.1553459627.948e8cc-3.3 is installed OR openstack-keystone-14.1.1~dev28-3.16 is installed OR openstack-neutron-13.0.6~dev8-3.16 is installed OR openstack-neutron-dhcp-agent-13.0.6~dev8-3.16 is installed OR openstack-neutron-gbp-5.0.1~dev476-3.13 is installed OR openstack-neutron-ha-tool-13.0.6~dev8-3.16 is installed OR openstack-neutron-l3-agent-13.0.6~dev8-3.16 is installed OR openstack-neutron-lbaas-13.0.1~dev16-3.13 is installed OR openstack-neutron-lbaas-agent-13.0.1~dev16-3.13 is installed OR openstack-neutron-linuxbridge-agent-13.0.6~dev8-3.16 is installed OR openstack-neutron-macvtap-agent-13.0.6~dev8-3.16 is installed OR openstack-neutron-metadata-agent-13.0.6~dev8-3.16 is installed OR openstack-neutron-metering-agent-13.0.6~dev8-3.16 is installed OR openstack-neutron-openvswitch-agent-13.0.6~dev8-3.16 is installed OR openstack-neutron-server-13.0.6~dev8-3.16 is installed OR openstack-nova-18.2.4~dev22-3.16 is installed OR openstack-nova-api-18.2.4~dev22-3.16 is installed OR openstack-nova-cells-18.2.4~dev22-3.16 is installed OR openstack-nova-compute-18.2.4~dev22-3.16 is installed OR openstack-nova-conductor-18.2.4~dev22-3.16 is installed OR openstack-nova-console-18.2.4~dev22-3.16 is installed OR openstack-nova-novncproxy-18.2.4~dev22-3.16 is installed OR openstack-nova-placement-api-18.2.4~dev22-3.16 is installed OR openstack-nova-scheduler-18.2.4~dev22-3.16 is installed OR openstack-nova-serialproxy-18.2.4~dev22-3.16 is installed OR openstack-nova-vncproxy-18.2.4~dev22-3.16 is installed OR openstack-octavia-3.2.1~dev3-3.16 is installed OR openstack-octavia-amphora-agent-3.2.1~dev3-3.16 is installed OR openstack-octavia-api-3.2.1~dev3-3.16 is installed OR openstack-octavia-health-manager-3.2.1~dev3-3.16 is installed OR openstack-octavia-housekeeping-3.2.1~dev3-3.16 is installed OR openstack-octavia-worker-3.2.1~dev3-3.16 is installed OR openstack-sahara-9.0.2~dev14-3.6 is installed OR openstack-sahara-api-9.0.2~dev14-3.6 is installed OR openstack-sahara-engine-9.0.2~dev14-3.6 is installed OR python-barbican-7.0.1~dev21-3.3 is installed OR python-keystone-14.1.1~dev28-3.16 is installed OR python-neutron-13.0.6~dev8-3.16 is installed OR python-neutron-gbp-5.0.1~dev476-3.13 is installed OR python-neutron-lbaas-13.0.1~dev16-3.13 is installed OR python-nova-18.2.4~dev22-3.16 is installed OR python-octavia-3.2.1~dev3-3.16 is installed OR python-psutil-5.4.6-3.3 is installed OR python-sahara-9.0.2~dev14-3.6 is installed OR release-notes-suse-openstack-cloud-9.20191025-3.15 is installed OR venv-openstack-barbican-7.0.1~dev21-3.13 is installed OR venv-openstack-barbican-x86_64-7.0.1~dev21-3.13 is installed OR venv-openstack-cinder-13.0.8~dev8-3.13 is installed OR venv-openstack-cinder-x86_64-13.0.8~dev8-3.13 is installed OR venv-openstack-designate-7.0.1~dev22-3.13 is installed OR venv-openstack-designate-x86_64-7.0.1~dev22-3.13 is installed OR venv-openstack-heat-11.0.3~dev23-3.13 is installed OR venv-openstack-heat-x86_64-11.0.3~dev23-3.13 is installed OR venv-openstack-keystone-14.1.1~dev28-3.13 is installed OR venv-openstack-keystone-x86_64-14.1.1~dev28-3.13 is installed OR venv-openstack-magnum-7.1.1~dev28-4.13 is installed OR venv-openstack-magnum-x86_64-7.1.1~dev28-4.13 is installed OR venv-openstack-manila-7.3.1~dev15-3.13 is installed OR venv-openstack-manila-x86_64-7.3.1~dev15-3.13 is installed OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.13 is installed OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.13 is installed OR venv-openstack-neutron-13.0.6~dev8-6.13 is installed OR venv-openstack-neutron-x86_64-13.0.6~dev8-6.13 is installed OR venv-openstack-nova-18.2.4~dev22-3.13 is installed OR venv-openstack-nova-x86_64-18.2.4~dev22-3.13 is installed OR venv-openstack-octavia-3.2.1~dev3-4.13 is installed OR venv-openstack-octavia-x86_64-3.2.1~dev3-4.13 is installed OR venv-openstack-sahara-9.0.2~dev14-3.13 is installed OR venv-openstack-sahara-x86_64-9.0.2~dev14-3.13 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information evince-3.20.2-6.27 is installed OR evince-browser-plugin-3.20.2-6.27 is installed OR evince-lang-3.20.2-6.27 is installed OR evince-plugin-djvudocument-3.20.2-6.27 is installed OR evince-plugin-dvidocument-3.20.2-6.27 is installed OR evince-plugin-pdfdocument-3.20.2-6.27 is installed OR evince-plugin-psdocument-3.20.2-6.27 is installed OR evince-plugin-tiffdocument-3.20.2-6.27 is installed OR evince-plugin-xpsdocument-3.20.2-6.27 is installed OR libevdocument3-4-3.20.2-6.27 is installed OR libevview3-3-3.20.2-6.27 is installed OR nautilus-evince-3.20.2-6.27 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.3-2.56 is installed OR libwebkit2gtk-4_0-37-2.28.3-2.56 is installed OR libwebkit2gtk3-lang-2.28.3-2.56 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.3-2.56 is installed OR typelib-1_0-WebKit2-4_0-2.28.3-2.56 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.28.3-2.56 is installed OR webkit2gtk-4_0-injected-bundles-2.28.3-2.56 is installed OR webkit2gtk3-2.28.3-2.56 is installed
BACK