Oval Definition:oval:org.opensuse.security:def:94460
Revision Date:2022-07-06Version:1
Title: (Important)
Description:

This update for apache2 fixes the following issues:

- CVE-2022-26377: Fixed possible request smuggling in mod_proxy_ajp (bsc#1200338) - CVE-2022-28614: Fixed read beyond bounds via ap_rwrite() (bsc#1200340) - CVE-2022-28615: Fixed read beyond bounds in ap_strcmp_match() (bsc#1200341) - CVE-2022-29404: Fixed denial of service in mod_lua r:parsebody (bsc#1200345) - CVE-2022-30556: Fixed information disclosure in mod_lua with websockets (bsc#1200350) - CVE-2022-30522: Fixed mod_sed denial of service (bsc#1200352) - CVE-2022-31813: Fixed mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism (bsc#1200348)
Family:unixClass:patch
Status:Reference(s):1174908
1177596
1198913
1200338
1200340
1200341
1200345
1200348
1200350
1200352
CVE-2020-14360
CVE-2020-25712
CVE-2022-26377
CVE-2022-28614
CVE-2022-28615
CVE-2022-29404
CVE-2022-30522
CVE-2022-30556
CVE-2022-31813
SUSE-SU-2020:3588-1
Platform(s):Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • xorg-x11-server-1.20.3-22.5.16.1 is installed
  • OR xorg-x11-server-extra-1.20.3-22.5.16.1 is installed
  • Definition Synopsis
  • Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE is installed
  • AND Package Information
  • apache2-2.4.51-150400.6.3.1 is installed
  • OR apache2-prefork-2.4.51-150400.6.3.1 is installed
  • OR apache2-utils-2.4.51-150400.6.3.1 is installed
  • BACK