SUSE-SU-2018:1079-1

UNKNOWN

Security update for apache2

Published Apr 25, 2018

Modified 7 years ago

Fix available

Details

This update for apache2 fixes the following issues:

security update:
- CVE-2018-1301: Specially crafted requests, in debug mode, could lead to denial of service. [bsc#1086817]
- CVE-2017-15710: failure in the language fallback handling could lead to denial of service. [bsc#1086776]
- CVE-2018-1312: Seed wrongly generated could lead to replay attack in cluster environments. [bsc#1086775]

Affected Packages

apache2

SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4SUSE Linux Enterprise Software Development Kit 11 SP4SUSE Studio Onsite 1.3

Fixed in:

2.2.34-70.15.1

apache2-doc

SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4SUSE Linux Enterprise Software Development Kit 11 SP4

Fixed in:

2.2.34-70.15.1

apache2-example-pages

SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4SUSE Linux Enterprise Software Development Kit 11 SP4

Fixed in:

2.2.34-70.15.1

apache2-prefork

SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4SUSE Linux Enterprise Software Development Kit 11 SP4