Oval Definition:oval:org.opensuse.security:def:99724
Revision Date:2022-03-29Version:1
Title: (Important)
Description:

This update for apache2 fixes the following issues:

- CVE-2022-23943: heap out-of-bounds write in mod_sed (bsc#1197098). - CVE-2022-22720: HTTP request smuggling due to incorrect error handling (bsc#1197095). - CVE-2022-22719: use of uninitialized value of in r:parsebody in mod_lua (bsc#1197091). - CVE-2022-22721: possible buffer overflow with very large or unlimited LimitXMLRequestBody (bsc#1197096).
Family:unixClass:patch
Status:Reference(s):1188571
1197091
1197095
1197096
1197098
CVE-2021-36222
CVE-2022-22719
CVE-2022-22720
CVE-2022-22721
CVE-2022-23943
SUSE-SU-2021:2800-1
Platform(s):Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE
SUSE Linux Enterprise Server for SAP Applications 15 SP1
Product(s):
Definition Synopsis
  • Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE is installed
  • AND Package Information
  • apache2-2.4.51-150200.3.42.1 is installed
  • OR apache2-prefork-2.4.51-150200.3.42.1 is installed
  • OR apache2-utils-2.4.51-150200.3.42.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND Package Information
  • krb5-1.16.3-3.21.1 is installed
  • OR krb5-32bit-1.16.3-3.21.1 is installed
  • OR krb5-client-1.16.3-3.21.1 is installed
  • OR krb5-devel-1.16.3-3.21.1 is installed
  • OR krb5-plugin-kdb-ldap-1.16.3-3.21.1 is installed
  • OR krb5-plugin-preauth-otp-1.16.3-3.21.1 is installed
  • OR krb5-plugin-preauth-pkinit-1.16.3-3.21.1 is installed
  • OR krb5-server-1.16.3-3.21.1 is installed
    • BACK