Oval Definition:oval:org.opensuse.security:def:67300
Revision Date:2021-10-26Version:1
Title:Security update for apache2 (Important)
Description:

This update for apache2 fixes the following issues:

- CVE-2021-40438: Fixed a SRF via a crafted request uri-path. (bsc#1190703) - CVE-2021-36160: Fixed an out-of-bounds read via a crafted request uri-path. (bsc#1190702) - CVE-2021-39275: Fixed an out-of-bounds write in ap_escape_quotes() via malicious input. (bsc#1190666) - CVE-2021-34798: Fixed a NULL pointer dereference via malformed requests. (bsc#1190669)
Family:unixClass:patch
Status:Reference(s):1156402
1177351
1177352
1190666
1190669
1190702
1190703
CVE-2019-2201
CVE-2020-7069
CVE-2020-7070
CVE-2021-34798
CVE-2021-36160
CVE-2021-39275
CVE-2021-40438
SUSE-SU-2019:2971-2
Platform(s):SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed
  • AND libjpeg-turbo-1.5.3-5.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • php7-7.4.6-3.11 is installed
  • OR php7-embed-7.4.6-3.11 is installed
  • OR php7-firebird-7.4.6-3.11 is installed
  • OR php7-test-7.4.6-3.11 is installed
    • BACK