Oval Definition:oval:org.opensuse.security:def:65662
Revision Date:2021-08-25Version:1
Title:Security update for jetty-minimal (Moderate)
Description:

This update for jetty-minimal fixes the following issues:

- Update to version 9.4.43.v20210629 - CVE-2021-34429: URIs can be crafted using some encoded characters to access the content of the WEB-INF directory and/or bypass some security constraints. (bsc#1188438)
Family:unixClass:patch
Status:Reference(s):1051510
1058115
1065600
1065729
1071995
1082555
1083647
1085030
1089895
1090036
1103990
1103991
1103992
1104745
1109837
1111666
1112178
1112374
1113956
1114279
1124278
1127354
1127355
1127371
1133021
1137325
1142685
1144333
1145929
1148868
1150660
1151794
1151927
1152489
1152624
1154824
1157169
1158265
1158983
1159037
1159058
1159199
1160388
1160947
1161016
1162002
1162063
1163309
1163368
1163403
1163897
1164284
1164780
1164871
1165183
1165478
1165741
1166780
1166860
1166861
1166862
1166864
1166866
1166867
1166868
1166870
1166940
1166969
1166978
1166985
1167104
1167288
1167574
1167851
1167867
1168081
1168202
1168332
1168486
1168670
1168760
1168762
1168763
1168764
1168765
1168789
1168881
1168884
1168952
1168959
1169020
1169057
1169194
1169390
1169514
1169525
1169625
1169762
1169771
1169795
1170011
1170056
1170125
1170145
1170284
1170345
1170442
1170457
1170522
1170592
1170617
1170618
1170620
1170621
1170770
1170778
1170791
1170901
1171078
1171098
1171118
1171124
1171189
1171191
1171195
1171202
1171205
1171214
1171217
1171218
1171219
1171220
1171244
1171293
1171417
1171424
1171527
1171529
1171530
1171558
1171599
1171600
1171601
1171602
1171604
1171605
1171606
1171607
1171608
1171609
1171610
1171611
1171612
1171613
1171614
1171615
1171616
1171617
1171618
1171619
1171620
1171621
1171622
1171623
1171624
1171625
1171626
1171662
1171679
1171691
1171692
1171694
1171695
1171732
1171736
1171739
1171743
1171753
1171759
1171817
1171835
1171841
1171868
1171904
1171948
1171949
1171951
1171952
1171979
1171982
1171983
1171988
1172017
1172096
1172097
1172098
1172099
1172101
1172102
1172103
1172104
1172127
1172130
1172185
1172188
1172199
1172201
1172202
1172221
1172247
1172249
1172251
1172257
1172317
1172342
1172343
1172344
1172366
1172378
1172391
1172397
1172453
1172458
1172484
1172537
1172538
1172687
1172719
1172759
1172775
1172781
1172782
1172783
1172871
1172872
1172999
1173060
1173074
1173146
1173265
1173280
1173284
1173428
1173514
1173567
1173573
1173746
1173818
1173820
1173825
1173826
1173833
1173838
1173839
1173845
1173857
1174113
1174115
1174122
1174123
1174186
1174187
1174296
1174343
1174356
1174409
1174438
1174462
1188438
CVE-2018-1000199
CVE-2019-19462
CVE-2019-20806
CVE-2019-20810
CVE-2019-20812
CVE-2019-20908
CVE-2019-9455
CVE-2020-0305
CVE-2020-0543
CVE-2020-10135
CVE-2020-10690
CVE-2020-10711
CVE-2020-10720
CVE-2020-10732
CVE-2020-10751
CVE-2020-10757
CVE-2020-10766
CVE-2020-10767
CVE-2020-10768
CVE-2020-10769
CVE-2020-10773
CVE-2020-10781
CVE-2020-11669
CVE-2020-12114
CVE-2020-12464
CVE-2020-12652
CVE-2020-12653
CVE-2020-12654
CVE-2020-12655
CVE-2020-12656
CVE-2020-12657
CVE-2020-12659
CVE-2020-12769
CVE-2020-12771
CVE-2020-12888
CVE-2020-13143
CVE-2020-13974
CVE-2020-14416
CVE-2020-15393
CVE-2020-15780
CVE-2020-6796
CVE-2020-6797
CVE-2020-6798
CVE-2020-6799
CVE-2020-6800
CVE-2021-34429
SUSE-SU-2020:0383-1
SUSE-SU-2021:2838-1
Platform(s):SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for Development Tools 15 SP3
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Manager Proxy 4.2
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • cluster-md-kmp-rt_debug-4.12.14-14.28 is installed
  • OR dlm-kmp-rt_debug-4.12.14-14.28 is installed
  • OR gfs2-kmp-rt_debug-4.12.14-14.28 is installed
  • OR kernel-rt-4.12.14-14.28 is installed
  • OR kernel-rt-extra-4.12.14-14.28 is installed
  • OR kernel-rt-livepatch-devel-4.12.14-14.28 is installed
  • OR kernel-rt_debug-4.12.14-14.28 is installed
  • OR kernel-rt_debug-base-4.12.14-14.28 is installed
  • OR kernel-rt_debug-extra-4.12.14-14.28 is installed
  • OR kernel-rt_debug-livepatch-devel-4.12.14-14.28 is installed
  • OR kselftests-kmp-rt-4.12.14-14.28 is installed
  • OR kselftests-kmp-rt_debug-4.12.14-14.28 is installed
  • OR ocfs2-kmp-rt_debug-4.12.14-14.28 is installed
  • OR reiserfs-kmp-rt-4.12.14-14.28 is installed
  • OR reiserfs-kmp-rt_debug-4.12.14-14.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP3 is installed
  • AND Package Information
  • jetty-http-9.4.43-3.12.2 is installed
  • OR jetty-io-9.4.43-3.12.2 is installed
  • OR jetty-security-9.4.43-3.12.2 is installed
  • OR jetty-server-9.4.43-3.12.2 is installed
  • OR jetty-servlet-9.4.43-3.12.2 is installed
  • OR jetty-util-9.4.43-3.12.2 is installed
  • OR jetty-util-ajax-9.4.43-3.12.2 is installed
    • BACK