Oval Definition:	oval:org.opensuse.security:def:60954
Revision Date: 2020-12-01 Version: 1 Title: Security update for apache2 (Important) Description: This update for apache2 fixes the following issues: - CVE-2020-1934: mod_proxy_ftp may use uninitialized memory when proxying to a malicious FTP server (bsc#1168404). - CVE-2020-1927: mod_rewrite configurations vulnerable to open redirect (bsc#1168407). - CVE-2020-1938: mod_proxy_ajp: Add 'secret' parameter to proxy workers to implement legacy AJP13 authentication (bsc#1169066). Family: unix Class: patch Status: Reference(s): 1023415 1041783 1042802 1042803 1043088 1043983 1045719 1045721 1048072 1054094 1055265 1056286 1056782 1057357 1058754 1058755 1058757 1059061 1061310 1062452 1069607 1069632 1073002 1073935 1076119 1078782 1082007 1082008 1082009 1082010 1082011 1082014 1082058 1087433 1087434 1087436 1087437 1087440 1087441 1089533 1101644 1101645 1101651 1101656 1106019 1106989 1106996 1107609 1112142 1112143 1112144 1112146 1112147 1112152 1112153 1112530 1112532 1120381 1121086 1122033 1122838 1122839 1124365 1124366 1124368 1128649 1130330 1130611 1130617 1130620 1130622 1130623 1130627 1130721 1131317 1132053 1132054 1132060 1144504 1149458 1151839 1152990 1152992 1152994 1152995 1154609 1162202 1162675 1163019 1168404 1168407 1169066 1171517 1172275 1172405 1174543 1176421 987170 CVE-2015-9096 CVE-2016-2339 CVE-2016-7798 CVE-2017-0898 CVE-2017-0899 CVE-2017-0900 CVE-2017-0901 CVE-2017-0902 CVE-2017-0903 CVE-2017-10784 CVE-2017-14033 CVE-2017-14064 CVE-2017-14970 CVE-2017-17405 CVE-2017-17742 CVE-2017-17790 CVE-2017-3144 CVE-2017-7511 CVE-2017-7515 CVE-2017-9228 CVE-2017-9229 CVE-2017-9406 CVE-2017-9408 CVE-2017-9775 CVE-2017-9776 CVE-2018-1000073 CVE-2018-1000074 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000077 CVE-2018-1000078 CVE-2018-1000079 CVE-2018-13785 CVE-2018-14618 CVE-2018-16395 CVE-2018-16396 CVE-2018-16412 CVE-2018-16413 CVE-2018-16435 CVE-2018-16644 CVE-2018-17189 CVE-2018-17199 CVE-2018-20467 CVE-2018-2938 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3214 CVE-2018-3639 CVE-2018-6914 CVE-2018-8777 CVE-2018-8778 CVE-2018-8779 CVE-2018-8780 CVE-2019-10650 CVE-2019-11007 CVE-2019-11008 CVE-2019-11009 CVE-2019-12625 CVE-2019-12900 CVE-2019-15845 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 CVE-2019-1787 CVE-2019-1788 CVE-2019-1789 CVE-2019-18197 CVE-2019-18634 CVE-2019-7175 CVE-2019-7395 CVE-2019-7397 CVE-2019-7398 CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 CVE-2019-9956 CVE-2020-10663 CVE-2020-15169 CVE-2020-1927 CVE-2020-1934 CVE-2020-1938 CVE-2020-8022 CVE-2020-8608 SUSE-SU-2017:1999-1 SUSE-SU-2017:3232-1 SUSE-SU-2018:0532-1 SUSE-SU-2018:2715-1 SUSE-SU-2019:0897-1 SUSE-SU-2020:0406-1 SUSE-SU-2020:0920-2 SUSE-SU-2020:1272-1 SUSE-SU-2020:1791-1 SUSE-SU-2020:2171-1 SUSE-SU-2020:2686-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information chromedriver-76.0.3809.100-lp151.2.20 is installed OR chromium-76.0.3809.100-lp151.2.20 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information mumble-1.3.2-lp152.2.3 is installed OR mumble-32bit-1.3.2-lp152.2.3 is installed OR mumble-server-1.3.2-lp152.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libpoppler-glib8-0.43.0-16.5 is installed OR libpoppler-qt4-4-0.43.0-16.5 is installed OR libpoppler60-0.43.0-16.5 is installed OR poppler-0.43.0-16.5 is installed OR poppler-qt-0.43.0-16.5 is installed OR poppler-tools-0.43.0-16.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information xen-4.9.4_10-3.71 is installed OR xen-doc-html-4.9.4_10-3.71 is installed OR xen-libs-4.9.4_10-3.71 is installed OR xen-libs-32bit-4.9.4_10-3.71 is installed OR xen-tools-4.9.4_10-3.71 is installed OR xen-tools-domU-4.9.4_10-3.71 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libruby2_1-2_1-2.1.9-19.3 is installed OR ruby2.1-2.1.9-19.3 is installed OR ruby2.1-stdlib-2.1.9-19.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libxslt-1.1.28-17.9 is installed OR libxslt-tools-1.1.28-17.9 is installed OR libxslt1-1.1.28-17.9 is installed OR libxslt1-32bit-1.1.28-17.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ImageMagick-6.8.8.1-71.108 is installed OR ImageMagick-config-6-SUSE-6.8.8.1-71.108 is installed OR ImageMagick-config-6-upstream-6.8.8.1-71.108 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.108 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.108 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information MozillaFirefox-78.2.0-112.19 is installed OR MozillaFirefox-devel-78.2.0-112.19 is installed OR MozillaFirefox-translations-common-78.2.0-112.19 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information apache2-2.4.23-29.54 is installed OR apache2-doc-2.4.23-29.54 is installed OR apache2-example-pages-2.4.23-29.54 is installed OR apache2-prefork-2.4.23-29.54 is installed OR apache2-utils-2.4.23-29.54 is installed OR apache2-worker-2.4.23-29.54 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information libXvnc1-1.6.0-22.17 is installed OR tigervnc-1.6.0-22.17 is installed OR xorg-x11-Xvnc-1.6.0-22.17 is installed
BACK