Oval Definition:	oval:org.opensuse.security:def:63926
Revision Date: 2020-12-01 Version: 1 Title: Security update for apache2 (Important) Description: This update for apache2 fixes the following issues: - CVE-2020-1934: mod_proxy_ftp may use uninitialized memory when proxying to a malicious FTP server (bsc#1168404). - CVE-2020-1927: mod_rewrite configurations vulnerable to open redirect (bsc#1168407). - CVE-2020-1938: mod_proxy_ajp: Add 'secret' parameter to proxy workers to implement legacy AJP13 authentication (bsc#1169066). Family: unix Class: patch Status: Reference(s): 1012382 1050242 1051510 1053043 1056787 1058115 1061840 1064802 1065600 1065729 1066129 1068546 1071995 1075020 1082387 1083647 1085535 1093389 1099658 1103992 1104353 1104427 1111666 1111696 1113722 1114605 1115688 1117114 1117158 1117561 1118139 1120091 1120423 1120566 1120902 1124503 1126206 1126356 1127616 1128432 1130699 1131673 1133190 1133612 1133616 1134090 1134671 1134730 1134738 1134743 1134806 1134936 1134945 1134946 1134947 1134948 1134949 1134950 1134951 1134952 1134953 1134972 1134974 1134975 1134980 1134981 1134983 1134987 1134989 1134990 1134994 1134995 1134998 1134999 1135018 1135021 1135024 1135026 1135027 1135028 1135029 1135031 1135033 1135034 1135035 1135036 1135037 1135038 1135039 1135041 1135042 1135044 1135045 1135046 1135047 1135049 1135051 1135052 1135053 1135055 1135056 1135058 1135153 1135542 1135556 1135642 1135661 1136188 1136206 1136215 1136345 1136347 1136348 1136353 1136424 1136428 1136430 1136432 1136434 1136435 1136438 1136439 1136456 1136460 1136461 1136469 1136477 1136478 1136498 1136573 1136586 1136598 1136881 1136922 1136935 1136978 1136990 1137151 1137152 1137153 1137162 1137201 1137224 1137232 1137233 1137236 1137372 1137429 1137444 1137586 1137739 1137752 1137995 1137996 1137998 1137999 1138000 1138002 1138003 1138005 1138006 1138007 1138008 1138009 1138010 1138011 1138012 1138013 1138014 1138015 1138016 1138017 1138018 1138019 1138291 1138293 1138336 1138374 1138375 1138461 1144348 1144352 1149742 1154091 1160398 1160968 1168404 1168407 1169066 1169511 1170107 1172399 1174075 1174159 1175201 1175596 1175664 1175665 1175671 1177472 1178428 CVE-2019-10124 CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 CVE-2019-11487 CVE-2019-12380 CVE-2019-12382 CVE-2019-12456 CVE-2019-12818 CVE-2019-12819 CVE-2019-12855 CVE-2019-14491 CVE-2019-14492 CVE-2019-15939 CVE-2019-3846 CVE-2020-0561 CVE-2020-14628 CVE-2020-14629 CVE-2020-14646 CVE-2020-14647 CVE-2020-14648 CVE-2020-14649 CVE-2020-14650 CVE-2020-14673 CVE-2020-14674 CVE-2020-14675 CVE-2020-14676 CVE-2020-14677 CVE-2020-14694 CVE-2020-14695 CVE-2020-14698 CVE-2020-14699 CVE-2020-14700 CVE-2020-14703 CVE-2020-14704 CVE-2020-14707 CVE-2020-14711 CVE-2020-14712 CVE-2020-14713 CVE-2020-14714 CVE-2020-14715 CVE-2020-14765 CVE-2020-14776 CVE-2020-14789 CVE-2020-14812 CVE-2020-15180 CVE-2020-15810 CVE-2020-15811 CVE-2020-1927 CVE-2020-1934 CVE-2020-1938 CVE-2020-24606 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2659 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2773 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-6458 CVE-2020-6459 CVE-2020-6460 CVE-2020-6462 openSUSE-SU-2019:1571-1 openSUSE-SU-2019:2068-1 openSUSE-SU-2019:2671-1 openSUSE-SU-2020:0604-1 openSUSE-SU-2020:1486-1 SUSE-SU-2020:0628-1 SUSE-SU-2020:1272-1 SUSE-SU-2020:1686-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information kernel-debug-4.12.14-lp151.28.7 is installed OR kernel-debug-base-4.12.14-lp151.28.7 is installed OR kernel-debug-devel-4.12.14-lp151.28.7 is installed OR kernel-default-4.12.14-lp151.28.7 is installed OR kernel-default-base-4.12.14-lp151.28.7 is installed OR kernel-default-devel-4.12.14-lp151.28.7 is installed OR kernel-devel-4.12.14-lp151.28.7 is installed OR kernel-docs-4.12.14-lp151.28.7 is installed OR kernel-docs-html-4.12.14-lp151.28.7 is installed OR kernel-kvmsmall-4.12.14-lp151.28.7 is installed OR kernel-kvmsmall-base-4.12.14-lp151.28.7 is installed OR kernel-kvmsmall-devel-4.12.14-lp151.28.7 is installed OR kernel-macros-4.12.14-lp151.28.7 is installed OR kernel-obs-build-4.12.14-lp151.28.7 is installed OR kernel-obs-qa-4.12.14-lp151.28.7 is installed OR kernel-source-4.12.14-lp151.28.7 is installed OR kernel-source-vanilla-4.12.14-lp151.28.7 is installed OR kernel-syms-4.12.14-lp151.28.7 is installed OR kernel-vanilla-4.12.14-lp151.28.7 is installed OR kernel-vanilla-base-4.12.14-lp151.28.7 is installed OR kernel-vanilla-devel-4.12.14-lp151.28.7 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information python3-virtualbox-6.1.14-lp152.2.5 is installed OR virtualbox-6.1.14-lp152.2.5 is installed OR virtualbox-devel-6.1.14-lp152.2.5 is installed OR virtualbox-guest-desktop-icons-6.1.14-lp152.2.5 is installed OR virtualbox-guest-source-6.1.14-lp152.2.5 is installed OR virtualbox-guest-tools-6.1.14-lp152.2.5 is installed OR virtualbox-guest-x11-6.1.14-lp152.2.5 is installed OR virtualbox-host-source-6.1.14-lp152.2.5 is installed OR virtualbox-kmp-6.1.14-lp152.2.5 is installed OR virtualbox-kmp-default-6.1.14_k5.3.18_lp152.41-lp152.2.5 is installed OR virtualbox-kmp-preempt-6.1.14_k5.3.18_lp152.41-lp152.2.5 is installed OR virtualbox-qt-6.1.14-lp152.2.5 is installed OR virtualbox-vnc-6.1.14-lp152.2.5 is installed OR virtualbox-websrv-6.1.14-lp152.2.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache2-2.4.23-29.54 is installed OR apache2-doc-2.4.23-29.54 is installed OR apache2-example-pages-2.4.23-29.54 is installed OR apache2-prefork-2.4.23-29.54 is installed OR apache2-utils-2.4.23-29.54 is installed OR apache2-worker-2.4.23-29.54 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND squid-3.5.21-26.32 is installed
BACK