Oval Definition:	oval:org.opensuse.security:def:66834
Revision Date: 2021-06-17 Version: 1 Title: Security update for jetty-minimal (Important) Description: This update for jetty-minimal fixes the following issues: Update to version 9.4.42.v20210604 - Fix: bsc#1187117, CVE-2021-28169 - possible for requests to the ConcatServlet with a doubly encoded path to access protected resources within the WEB-INF directory - Fix: bsc#1184367, CVE-2021-28165 - jetty server high CPU when client send data length > 17408 - Fix: bsc#1184368, CVE-2021-28164 - Normalize ambiguous URIs - Fix: bsc#1184366, CVE-2021-28163 - Exclude webapps directory from deployment scan Family: unix Class: patch Status: Reference(s): 1184366 1184367 1184368 1187117 CVE-2012-4504 CVE-2014-3622 CVE-2014-3668 CVE-2014-3669 CVE-2014-3670 CVE-2014-9426 CVE-2014-9427 CVE-2015-0231 CVE-2015-0232 CVE-2015-0235 CVE-2015-0273 CVE-2015-1351 CVE-2015-1352 CVE-2015-2305 CVE-2015-2325 CVE-2015-2326 CVE-2015-2331 CVE-2015-3152 CVE-2015-3414 CVE-2015-3415 CVE-2015-3416 CVE-2017-9120 CVE-2018-1000222 CVE-2018-1000888 CVE-2018-12882 CVE-2018-14851 CVE-2018-17082 CVE-2018-19935 CVE-2018-20783 CVE-2019-11034 CVE-2019-11035 CVE-2019-11036 CVE-2019-11039 CVE-2019-11040 CVE-2019-11041 CVE-2019-11042 CVE-2019-11043 CVE-2019-11045 CVE-2019-11046 CVE-2019-11047 CVE-2019-11050 CVE-2019-9020 CVE-2019-9021 CVE-2019-9022 CVE-2019-9023 CVE-2019-9024 CVE-2019-9637 CVE-2019-9638 CVE-2019-9639 CVE-2019-9640 CVE-2019-9641 CVE-2019-9675 CVE-2020-7062 CVE-2020-7063 CVE-2021-28163 CVE-2021-28164 CVE-2021-28165 CVE-2021-28169 Platform(s): SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Web Scripting 15 SP2 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed AND perl-Net-Libproxy-0.4.15-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP2 is installed AND Package Information apache2-mod_php7-7.4.6-1 is installed OR php7-7.4.6-1 is installed OR php7-bcmath-7.4.6-1 is installed OR php7-bz2-7.4.6-1 is installed OR php7-calendar-7.4.6-1 is installed OR php7-ctype-7.4.6-1 is installed OR php7-curl-7.4.6-1 is installed OR php7-dba-7.4.6-1 is installed OR php7-devel-7.4.6-1 is installed OR php7-dom-7.4.6-1 is installed OR php7-enchant-7.4.6-1 is installed OR php7-exif-7.4.6-1 is installed OR php7-fastcgi-7.4.6-1 is installed OR php7-fileinfo-7.4.6-1 is installed OR php7-fpm-7.4.6-1 is installed OR php7-ftp-7.4.6-1 is installed OR php7-gd-7.4.6-1 is installed OR php7-gettext-7.4.6-1 is installed OR php7-gmp-7.4.6-1 is installed OR php7-iconv-7.4.6-1 is installed OR php7-intl-7.4.6-1 is installed OR php7-json-7.4.6-1 is installed OR php7-ldap-7.4.6-1 is installed OR php7-mbstring-7.4.6-1 is installed OR php7-mysql-7.4.6-1 is installed OR php7-odbc-7.4.6-1 is installed OR php7-opcache-7.4.6-1 is installed OR php7-openssl-7.4.6-1 is installed OR php7-pcntl-7.4.6-1 is installed OR php7-pdo-7.4.6-1 is installed OR php7-pgsql-7.4.6-1 is installed OR php7-phar-7.4.6-1 is installed OR php7-posix-7.4.6-1 is installed OR php7-readline-7.4.6-1 is installed OR php7-shmop-7.4.6-1 is installed OR php7-snmp-7.4.6-1 is installed OR php7-soap-7.4.6-1 is installed OR php7-sockets-7.4.6-1 is installed OR php7-sodium-7.4.6-1 is installed OR php7-sqlite-7.4.6-1 is installed OR php7-sysvmsg-7.4.6-1 is installed OR php7-sysvsem-7.4.6-1 is installed OR php7-sysvshm-7.4.6-1 is installed OR php7-tidy-7.4.6-1 is installed OR php7-tokenizer-7.4.6-1 is installed OR php7-xmlreader-7.4.6-1 is installed OR php7-xmlrpc-7.4.6-1 is installed OR php7-xmlwriter-7.4.6-1 is installed OR php7-xsl-7.4.6-1 is installed OR php7-zip-7.4.6-1 is installed OR php7-zlib-7.4.6-1 is installed
BACK