Oval Definition:
oval:org.opensuse.security:def:99389
Revision Date
:
2021-06-22
Version
:
1
Title
:
(Important)
Description
:
This update for apache2 fixes the following issues:
- fixed CVE-2021-30641 [bsc#1187174]: MergeSlashes regression - fixed CVE-2021-31618 [bsc#1186924]: NULL pointer dereference on specially crafted HTTP/2 request - fixed CVE-2020-13950 [bsc#1187040]: mod_proxy NULL pointer dereference - fixed CVE-2020-35452 [bsc#1186922]: Single zero byte stack overflow in mod_auth_digest - fixed CVE-2021-26690 [bsc#1186923]: mod_session NULL pointer dereference in parser - fixed CVE-2021-26691 [bsc#1187017]: Heap overflow in mod_session
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1181742
1186922
1186923
1186924
1187017
1187040
1187174
CVE-2020-13950
CVE-2020-35452
CVE-2020-35498
CVE-2021-26690
CVE-2021-26691
CVE-2021-30641
CVE-2021-31618
SUSE-SU-2021:0439-1
Platform(s)
:
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-EC2-HVM
SUSE Linux Enterprise Server 15 SP1-BCL
Product(s)
:
Definition Synopsis
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-EC2-HVM is installed
AND
Package Information
apache2-2.4.43-3.22.1 is installed
OR
apache2-prefork-2.4.43-3.22.1 is installed
OR
apache2-utils-2.4.43-3.22.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15 SP1-BCL is installed
AND
Package Information
libopenvswitch-2_11-0-2.11.5-3.15.3 is installed
OR
openvswitch-2.11.5-3.15.3 is installed
OR
openvswitch-devel-2.11.5-3.15.3 is installed
BACK