Oval Definition:oval:org.opensuse.security:def:99689
Revision Date:2021-10-26Version:1
Title: (Important)
Description:

This update for apache2 fixes the following issues:

- CVE-2021-40438: Fixed a SRF via a crafted request uri-path. (bsc#1190703) - CVE-2021-36160: Fixed an out-of-bounds read via a crafted request uri-path. (bsc#1190702) - CVE-2021-39275: Fixed an out-of-bounds write in ap_escape_quotes() via malicious input. (bsc#1190666) - CVE-2021-34798: Fixed a NULL pointer dereference via malformed requests. (bsc#1190669)
Family:unixClass:patch
Status:Reference(s):1187060
1190666
1190669
1190702
1190703
CVE-2021-34798
CVE-2021-3580
CVE-2021-36160
CVE-2021-39275
CVE-2021-40438
SUSE-SU-2021:2143-1
Platform(s):Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE
SUSE Linux Enterprise Server for SAP Applications 15 SP1
Product(s):
Definition Synopsis
  • Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE is installed
  • AND Package Information
  • apache2-2.4.43-3.32.1 is installed
  • OR apache2-prefork-2.4.43-3.32.1 is installed
  • OR apache2-utils-2.4.43-3.32.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND Package Information
  • libhogweed4-3.4.1-4.18.1 is installed
  • OR libhogweed4-32bit-3.4.1-4.18.1 is installed
  • OR libnettle-devel-3.4.1-4.18.1 is installed
  • OR libnettle6-3.4.1-4.18.1 is installed
  • OR libnettle6-32bit-3.4.1-4.18.1 is installed
  • BACK