Oval Definition:oval:org.opensuse.security:def:92532
Revision Date:2021-06-17Version:1
Title:Security update for apache2 (Important)
Description:

This update for apache2 fixes the following issues:

- CVE-2021-30641: Fixed MergeSlashes regression (bsc#1187174) - CVE-2021-31618: Fixed NULL pointer dereference on specially crafted HTTP/2 request (bsc#1186924) - CVE-2020-35452: Fixed Single zero byte stack overflow in mod_auth_digest (bsc#1186922) - CVE-2021-26690: Fixed mod_session NULL pointer dereference in parser (bsc#1186923) - CVE-2021-26691: Fixed Heap overflow in mod_session (bsc#1187017) - Fixed potential content spoofing with default error pages (bsc#1182703) - Fixed for an issue when 'gensslcert' does not set CA:True. (bsc#1180530)
Family:unixClass:patch
Status:Reference(s):1145740
1180530
1182703
1186922
1186923
1186924
1187017
1187174
CVE-2019-10092
CVE-2020-35452
CVE-2021-26690
CVE-2021-26691
CVE-2021-30641
CVE-2021-31618
SUSE-SU-2021:2004-1
Platform(s):SUSE Linux Enterprise Server 15 SP1-LTSS
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 15 SP1-LTSS is installed
  • AND Package Information
  • apache2-2.4.33-3.50.1 is installed
  • OR apache2-devel-2.4.33-3.50.1 is installed
  • OR apache2-doc-2.4.33-3.50.1 is installed
  • OR apache2-prefork-2.4.33-3.50.1 is installed
  • OR apache2-utils-2.4.33-3.50.1 is installed
  • OR apache2-worker-2.4.33-3.50.1 is installed
  • BACK