Oval Definition:
oval:org.opensuse.security:def:92731
Revision Date
:
2021-06-17
Version
:
1
Title
:
Security update for apache2 (Important)
Description
:
This update for apache2 fixes the following issues:
- CVE-2021-30641: Fixed MergeSlashes regression (bsc#1187174) - CVE-2021-31618: Fixed NULL pointer dereference on specially crafted HTTP/2 request (bsc#1186924) - CVE-2020-35452: Fixed Single zero byte stack overflow in mod_auth_digest (bsc#1186922) - CVE-2021-26690: Fixed mod_session NULL pointer dereference in parser (bsc#1186923) - CVE-2021-26691: Fixed Heap overflow in mod_session (bsc#1187017) - Fixed potential content spoofing with default error pages (bsc#1182703) - Fixed for an issue when 'gensslcert' does not set CA:True. (bsc#1180530)
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1145740
1180530
1182703
1186922
1186923
1186924
1187017
1187174
CVE-2019-10092
CVE-2020-35452
CVE-2021-26690
CVE-2021-26691
CVE-2021-30641
CVE-2021-31618
SUSE-SU-2021:2004-1
Platform(s)
:
SUSE Linux Enterprise Server for SAP Applications 15 SP1
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
AND
Package Information
apache2-2.4.33-3.50.1 is installed
OR
apache2-devel-2.4.33-3.50.1 is installed
OR
apache2-doc-2.4.33-3.50.1 is installed
OR
apache2-prefork-2.4.33-3.50.1 is installed
OR
apache2-utils-2.4.33-3.50.1 is installed
OR
apache2-worker-2.4.33-3.50.1 is installed
BACK