Oval Definition:oval:org.opensuse.security:def:69152
Revision Date:2021-10-26Version:1
Title:Security update for apache2 (Important)
Description:

This update for apache2 fixes the following issues:

- CVE-2021-40438: Fixed a SRF via a crafted request uri-path. (bsc#1190703) - CVE-2021-36160: Fixed an out-of-bounds read via a crafted request uri-path. (bsc#1190702) - CVE-2021-39275: Fixed an out-of-bounds write in ap_escape_quotes() via malicious input. (bsc#1190666) - CVE-2021-34798: Fixed a NULL pointer dereference via malformed requests. (bsc#1190669)
Family:unixClass:patch
Status:Reference(s):1103203
1140709
1153095
1153245
1160467
1160468
1190666
1190669
1190702
1190703
CVE-2019-12838
CVE-2019-14896
CVE-2019-14897
CVE-2021-34798
CVE-2021-36160
CVE-2021-39275
CVE-2021-40438
SUSE-SU-2019:2989-1
SUSE-SU-2021:3522-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP3
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Manager Proxy 4.2
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed
  • AND Package Information
  • libslurm32-17.11.13-6.18 is installed
  • OR slurm-17.11.13-6.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_18-default-4-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_5-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP3 is installed
  • AND Package Information
  • apache2-devel-2.4.43-3.32.1 is installed
  • OR apache2-doc-2.4.43-3.32.1 is installed
  • OR apache2-worker-2.4.43-3.32.1 is installed
    • BACK