OVAL Reference oval:org.opensuse.security:def:6230

Oval Definition:

oval:org.opensuse.security:def:6230

Revision Date:	2021-11-16	Version:	1
Title:	Security update for tomcat (Moderate)
Description:	This update for tomcat fixes the following issues: - CVE-2021-30640: Escape parameters in JNDI Realm queries (bsc#1188279). - CVE-2021-33037: Process T-E header from both HTTP 1.0 and HTTP 1.1. clients (bsc#1188278). - CVE-2021-41079: Fixed a denial of service caused by an unexpected TLS packet (bsc#1190558).
Family:	unix	Class:	patch
Status:		Reference(s):	1188278 1188279 1190558 CVE-2009-1886 CVE-2009-1888 CVE-2009-1892 CVE-2009-2813 CVE-2009-2906 CVE-2009-2948 CVE-2010-0547 CVE-2010-0728 CVE-2010-0787 CVE-2010-2156 CVE-2010-2252 CVE-2010-3611 CVE-2010-3616 CVE-2011-0413 CVE-2011-0997 CVE-2011-2748 CVE-2011-2749 CVE-2011-4539 CVE-2011-4868 CVE-2012-1586 CVE-2012-1616 CVE-2012-3570 CVE-2012-3571 CVE-2012-3954 CVE-2012-3955 CVE-2012-4929 CVE-2013-2142 CVE-2013-2266 CVE-2014-3230 CVE-2014-4877 CVE-2014-7204 CVE-2014-7300 CVE-2015-5191 CVE-2015-7236 CVE-2015-8605 CVE-2016-10324 CVE-2016-10325 CVE-2016-10326 CVE-2016-1856 CVE-2016-1857 CVE-2016-4590 CVE-2016-4591 CVE-2016-4622 CVE-2016-4624 CVE-2016-4692 CVE-2016-4743 CVE-2016-5104 CVE-2016-6354 CVE-2016-7586 CVE-2016-7587 CVE-2016-7589 CVE-2016-7592 CVE-2016-7598 CVE-2016-7599 CVE-2016-7610 CVE-2016-7623 CVE-2016-7632 CVE-2016-7635 CVE-2016-7639 CVE-2016-7641 CVE-2016-7645 CVE-2016-7652 CVE-2016-7654 CVE-2016-7656 CVE-2017-1000121 CVE-2017-1000122 CVE-2017-13788 CVE-2017-13798 CVE-2017-13803 CVE-2017-13856 CVE-2017-13866 CVE-2017-13870 CVE-2017-13884 CVE-2017-13885 CVE-2017-2350 CVE-2017-2354 CVE-2017-2355 CVE-2017-2356 CVE-2017-2362 CVE-2017-2363 CVE-2017-2364 CVE-2017-2365 CVE-2017-2366 CVE-2017-2369 CVE-2017-2371 CVE-2017-2373 CVE-2017-2496 CVE-2017-2510 CVE-2017-2538 CVE-2017-2539 CVE-2017-3144 CVE-2017-5715 CVE-2017-5753 CVE-2017-6318 CVE-2017-7006 CVE-2017-7011 CVE-2017-7012 CVE-2017-7018 CVE-2017-7019 CVE-2017-7020 CVE-2017-7030 CVE-2017-7034 CVE-2017-7037 CVE-2017-7038 CVE-2017-7039 CVE-2017-7040 CVE-2017-7041 CVE-2017-7042 CVE-2017-7043 CVE-2017-7046 CVE-2017-7048 CVE-2017-7049 CVE-2017-7052 CVE-2017-7055 CVE-2017-7056 CVE-2017-7059 CVE-2017-7061 CVE-2017-7064 CVE-2017-7081 CVE-2017-7087 CVE-2017-7089 CVE-2017-7090 CVE-2017-7091 CVE-2017-7092 CVE-2017-7093 CVE-2017-7094 CVE-2017-7095 CVE-2017-7096 CVE-2017-7098 CVE-2017-7099 CVE-2017-7100 CVE-2017-7102 CVE-2017-7104 CVE-2017-7107 CVE-2017-7109 CVE-2017-7111 CVE-2017-7117 CVE-2017-7120 CVE-2017-7142 CVE-2017-7153 CVE-2017-7156 CVE-2017-7157 CVE-2017-7160 CVE-2017-7161 CVE-2017-7165 CVE-2017-7853 CVE-2017-8779 CVE-2017-9433 CVE-2018-11646 CVE-2018-11712 CVE-2018-11713 CVE-2018-12911 CVE-2018-4088 CVE-2018-4096 CVE-2018-4101 CVE-2018-4113 CVE-2018-4114 CVE-2018-4117 CVE-2018-4118 CVE-2018-4119 CVE-2018-4120 CVE-2018-4121 CVE-2018-4122 CVE-2018-4125 CVE-2018-4127 CVE-2018-4128 CVE-2018-4129 CVE-2018-4133 CVE-2018-4146 CVE-2018-4161 CVE-2018-4162 CVE-2018-4163 CVE-2018-4165 CVE-2018-4190 CVE-2018-4199 CVE-2018-4200 CVE-2018-4204 CVE-2018-4218 CVE-2018-4222 CVE-2018-4232 CVE-2018-4233 CVE-2018-4246 CVE-2018-5732 CVE-2018-5733 CVE-2021-30640 CVE-2021-33037 CVE-2021-41079
Platform(s):	openSUSE 13.1 openSUSE 13.1 NonFree openSUSE 13.2 openSUSE 13.2 NonFree openSUSE Leap 42.1 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Build System Kit 12 SP4 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Toolchain 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4	Product(s):
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND Package Information krb5-mini-1.12.1-36 is installed OR krb5-mini-devel-1.12.1-36 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND kernel-zfcpdump-4.4.59-92.24 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND kernel-zfcpdump-4.4.82-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP4 is installed AND Package Information mariadb-10.2.21-3.7 is installed OR mariadb-bench-10.2.21-3.7 is installed OR mariadb-test-10.2.21-3.7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND bogofilter-1.1.1-174.27.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-38.5.0esr-28.2 is installed OR MozillaFirefox-translations-38.5.0esr-28.2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information finch-2.10.9-8 is installed OR libpurple-2.10.9-8 is installed OR libpurple-lang-2.10.9-8 is installed OR libpurple-meanwhile-2.10.9-8 is installed OR libpurple-tcl-2.10.9-8 is installed OR pidgin-2.10.9-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND wget-1.14-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND argyllcms-1.6.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information at-3.1.14-8.6 is installed OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 is installed AND Package Information xen-4.4.4_18-22.39 is installed OR xen-doc-html-4.4.4_18-22.39 is installed OR xen-kmp-default-4.4.4_18_k3.12.61_52.69-22.39 is installed OR xen-libs-4.4.4_18-22.39 is installed OR xen-libs-32bit-4.4.4_18-22.39 is installed OR xen-tools-4.4.4_18-22.39 is installed OR xen-tools-domU-4.4.4_18-22.39 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 SP1 is installed AND sudo-1.8.10p3-2.16 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information cluster-md-kmp-default-4.4.21-69 is installed OR cluster-network-kmp-default-4.4.21-69 is installed OR dlm-kmp-default-4.4.21-69 is installed OR gfs2-kmp-default-4.4.21-69 is installed OR ocfs2-kmp-default-4.4.21-69 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND haproxy-1.6.11-10 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND ctdb-4.6.16+git.124.aee309c5c18-3.32 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND apache2-mod_perl-2.0.8-11 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-4_4_59-92_24-default-1-2 is installed OR kgraft-patch-SLE12-SP2_Update_9-1-2 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_73-5-default-2-2.3 is installed OR kgraft-patch-SLE12-SP3_Update_0-2-2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND Package Information puppet-3.8.5-15.9 is installed OR puppet-server-3.8.5-15.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND docker-1.10.3-66 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-openssl098-0.9.8j-66 is installed OR libopenssl0_9_8-0.9.8j-66 is installed OR libopenssl0_9_8-32bit-0.9.8j-66 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND python-requests-2.3.0-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Toolchain 12 is installed AND Package Information cpp5-5.3.1+r233831-9 is installed OR gcc5-5.3.1+r233831-9 is installed OR gcc5-32bit-5.3.1+r233831-9 is installed OR gcc5-ada-5.3.1+r233831-9 is installed OR gcc5-ada-32bit-5.3.1+r233831-9 is installed OR gcc5-c++-5.3.1+r233831-9 is installed OR gcc5-c++-32bit-5.3.1+r233831-9 is installed OR gcc5-fortran-5.3.1+r233831-9 is installed OR gcc5-fortran-32bit-5.3.1+r233831-9 is installed OR gcc5-info-5.3.1+r233831-9 is installed OR gcc5-locale-5.3.1+r233831-9 is installed OR libada5-5.3.1+r233831-9 is installed OR libada5-32bit-5.3.1+r233831-9 is installed OR libffi-devel-gcc5-5.3.1+r233831-9 is installed OR libffi-devel-gcc5-32bit-5.3.1+r233831-9 is installed OR libffi-gcc5-5.3.1+r233831-9 is installed OR libstdc++6-devel-gcc5-5.3.1+r233831-9 is installed OR libstdc++6-devel-gcc5-32bit-5.3.1+r233831-9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information libpython3_4m1_0-3.4.1-2 is installed OR python3-base-3.4.1-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP1 is installed AND Package Information libmysqlclient15-5.0.67-13.20.1 is installed OR libmysqlclient15-32bit-5.0.67-13.20.1 is installed OR libmysqlclient15-x86-5.0.67-13.20.1 is installed OR libmysqlclient_r15-5.0.67-13.20.1 is installed OR mysql-5.0.67-13.20.1 is installed OR mysql-Max-5.0.67-13.20.1 is installed OR mysql-client-5.0.67-13.20.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information PolicyKit-0.9-14.39.1 is installed OR PolicyKit-32bit-0.9-14.39.1 is installed OR PolicyKit-doc-0.9-14.39.2 is installed OR PolicyKit-x86-0.9-14.39.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND kde4-kgreeter-plugins-4.3.5-0.12.18.1 is installed OR kdebase4-wallpapers-4.3.5-0.11.18.1 is installed OR kdebase4-workspace-4.3.5-0.12.18.1 is installed OR kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 is installed OR kdm-4.3.5-0.12.18.1 is installed OR kwin-4.3.5-0.12.18.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND kde4-kgreeter-plugins-4.3.5-0.12.18.1 is installed OR kdebase4-wallpapers-4.3.5-0.11.18.1 is installed OR kdebase4-workspace-4.3.5-0.12.18.1 is installed OR kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 is installed OR kdm-4.3.5-0.12.18.1 is installed OR kwin-4.3.5-0.12.18.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND man-2.5.2-17.16 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND apache2-mod_perl-2.0.4-40.24.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND apache2-mod_nss-1.0.8-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information gnome-shell-3.10.4-40 is installed OR gnome-shell-browser-plugin-3.10.4-40 is installed OR gnome-shell-lang-3.10.4-40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR avahi-utils-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information at-3.1.14-7 is installed OR flex-2.5.37-8 is installed OR flex-32bit-2.5.37-8 is installed OR libQtWebKit4-4.8.6+2.3.3-3 is installed OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND rpcbind-0.2.3-21 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND Package Information libgcrypt-1.6.1-16.68 is installed OR libgcrypt20-1.6.1-16.68 is installed OR libgcrypt20-32bit-1.6.1-16.68 is installed OR libgcrypt20-hmac-1.6.1-16.68 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND Package Information kgraft-patch-4_4_156-94_57-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_18-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information apache2-mod_php5-5.2.14-0.7.30.50.1 is installed OR php5-5.2.14-0.7.30.50.1 is installed OR php5-bcmath-5.2.14-0.7.30.50.1 is installed OR php5-bz2-5.2.14-0.7.30.50.1 is installed OR php5-calendar-5.2.14-0.7.30.50.1 is installed OR php5-ctype-5.2.14-0.7.30.50.1 is installed OR php5-curl-5.2.14-0.7.30.50.1 is installed OR php5-dba-5.2.14-0.7.30.50.1 is installed OR php5-dbase-5.2.14-0.7.30.50.1 is installed OR php5-devel-5.2.14-0.7.30.50.1 is installed OR php5-dom-5.2.14-0.7.30.50.1 is installed OR php5-exif-5.2.14-0.7.30.50.1 is installed OR php5-fastcgi-5.2.14-0.7.30.50.1 is installed OR php5-ftp-5.2.14-0.7.30.50.1 is installed OR php5-gd-5.2.14-0.7.30.50.1 is installed OR php5-gettext-5.2.14-0.7.30.50.1 is installed OR php5-gmp-5.2.14-0.7.30.50.1 is installed OR php5-hash-5.2.14-0.7.30.50.1 is installed OR php5-iconv-5.2.14-0.7.30.50.1 is installed OR php5-imap-5.2.14-0.7.30.50.1 is installed OR php5-json-5.2.14-0.7.30.50.1 is installed OR php5-ldap-5.2.14-0.7.30.50.1 is installed OR php5-mbstring-5.2.14-0.7.30.50.1 is installed OR php5-mcrypt-5.2.14-0.7.30.50.1 is installed OR php5-mysql-5.2.14-0.7.30.50.1 is installed OR php5-ncurses-5.2.14-0.7.30.50.1 is installed OR php5-odbc-5.2.14-0.7.30.50.1 is installed OR php5-openssl-5.2.14-0.7.30.50.1 is installed OR php5-pcntl-5.2.14-0.7.30.50.1 is installed OR php5-pdo-5.2.14-0.7.30.50.1 is installed OR php5-pear-5.2.14-0.7.30.50.1 is installed OR php5-pgsql-5.2.14-0.7.30.50.1 is installed OR php5-posix-5.2.14-0.7.30.50.1 is installed OR php5-pspell-5.2.14-0.7.30.50.1 is installed OR php5-readline-5.2.14-0.7.30.50.1 is installed OR php5-shmop-5.2.14-0.7.30.50.1 is installed OR php5-snmp-5.2.14-0.7.30.50.1 is installed OR php5-soap-5.2.14-0.7.30.50.1 is installed OR php5-sockets-5.2.14-0.7.30.50.1 is installed OR php5-sqlite-5.2.14-0.7.30.50.1 is installed OR php5-suhosin-5.2.14-0.7.30.50.1 is installed OR php5-sysvmsg-5.2.14-0.7.30.50.1 is installed OR php5-sysvsem-5.2.14-0.7.30.50.1 is installed OR php5-sysvshm-5.2.14-0.7.30.50.1 is installed OR php5-tidy-5.2.14-0.7.30.50.1 is installed OR php5-tokenizer-5.2.14-0.7.30.50.1 is installed OR php5-wddx-5.2.14-0.7.30.50.1 is installed OR php5-xmlreader-5.2.14-0.7.30.50.1 is installed OR php5-xmlrpc-5.2.14-0.7.30.50.1 is installed OR php5-xmlwriter-5.2.14-0.7.30.50.1 is installed OR php5-xsl-5.2.14-0.7.30.50.1 is installed OR php5-zip-5.2.14-0.7.30.50.1 is installed OR php5-zlib-5.2.14-0.7.30.50.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information bind-9.9.6P1-0.12.1 is installed OR bind-devel-9.9.6P1-0.12.1 is installed OR bind-devel-32bit-9.9.6P1-0.12.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND PolicyKit-devel-0.9-14.43.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information bash-devel-4.2-75 is installed OR readline-devel-6.2-75 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND MozillaFirefox-devel-38.4.0esr-51 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information FastCGI-2.4.0-167 is installed OR perl-FastCGI-2.4.0-167 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information NetworkManager-1.0.12-12 is installed OR NetworkManager-devel-1.0.12-12 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND bluez-devel-5.13-5.4 is installed

BACK