| Revision Date: | 2020-09-02 | Version: | 1 |
| Title: | Security update for apache2 (Moderate) |
| Description: |
This update for apache2 fixes the following issues:
- CVE-2020-9490: Fixed a crash caused by a specially crafted value for the 'Cache-Digest' header in a HTTP/2 request (bsc#1175071). - CVE-2020-11985: IP address spoofing when proxying using mod_remoteip and mod_rewrite (bsc#1175072). - CVE-2020-11993: When trace/debug was enabled for the HTTP/2 module logging statements were made on the wrong connection (bsc#1175070).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1175070
1175071
1175072
CVE-2020-11985
CVE-2020-11993
CVE-2020-9490
|
| Platform(s): | SUSE Linux Enterprise Server 12 SP3-ESPOS
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information
apache2-2.4.23-29.63.1 is installed
OR apache2-doc-2.4.23-29.63.1 is installed
OR apache2-example-pages-2.4.23-29.63.1 is installed
OR apache2-prefork-2.4.23-29.63.1 is installed
OR apache2-utils-2.4.23-29.63.1 is installed
OR apache2-worker-2.4.23-29.63.1 is installed
|