Oval Definition:oval:org.opensuse.security:def:93618
Revision Date:2022-07-06Version:1
Title: (Important)
Description:

This update for apache2 fixes the following issues:

- CVE-2022-26377: Fixed possible request smuggling in mod_proxy_ajp (bsc#1200338) - CVE-2022-28614: Fixed read beyond bounds via ap_rwrite() (bsc#1200340) - CVE-2022-28615: Fixed read beyond bounds in ap_strcmp_match() (bsc#1200341) - CVE-2022-29404: Fixed denial of service in mod_lua r:parsebody (bsc#1200345) - CVE-2022-30556: Fixed information disclosure in mod_lua with websockets (bsc#1200350) - CVE-2022-30522: Fixed mod_sed denial of service (bsc#1200352) - CVE-2022-31813: Fixed mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism (bsc#1200348)
Family:unixClass:patch
Status:Reference(s):1169039
1169040
1198913
1200338
1200340
1200341
1200345
1200348
1200350
1200352
CVE-2019-20637
CVE-2020-11653
CVE-2022-26377
CVE-2022-28614
CVE-2022-28615
CVE-2022-29404
CVE-2022-30522
CVE-2022-30556
CVE-2022-31813
openSUSE-SU-2020:0819-1
Platform(s):Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
Product(s):
Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND Package Information
  • libvarnishapi2-6.2.1-bp151.4.6.1 is installed
  • OR varnish-6.2.1-bp151.4.6.1 is installed
  • OR varnish-devel-6.2.1-bp151.4.6.1 is installed
    • Definition Synopsis
  • Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE is installed
  • AND Package Information
  • apache2-2.4.51-150400.6.3.1 is installed
  • OR apache2-prefork-2.4.51-150400.6.3.1 is installed
  • OR apache2-utils-2.4.51-150400.6.3.1 is installed
    • BACK