Early Access — Mondoo Vulnerability Intelligence is currently in preview.

SUSE-SU-2023:4431-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2023:4431-1

UNKNOWN

Security update for apache2

Published Nov 13, 2023

Modified 2 years ago

Fix available

Details

This update for apache2 fixes the following issues:

CVE-2023-31122: Fixed an out of bounds read in mod_macro (bsc#1216424).

Non-security fixes:

Fixed the content type handling in mod_proxy_http2 (bsc#1214357).
Fixed a floating point exception crash (bsc#1207399).

Affected Packages

SUSE:Enterprise Storage 7.1apache2

Fixed in:

2.4.51-150200.3.59.1

SUSE:Enterprise Storage 7.1apache2-devel

Fixed in:

2.4.51-150200.3.59.1

SUSE:Enterprise Storage 7.1apache2-doc

Fixed in:

2.4.51-150200.3.59.1

SUSE:Enterprise Storage 7.1apache2-prefork

Fixed in:

2.4.51-150200.3.59.1

SUSE:Enterprise Storage 7.1apache2-utils

Fixed in:

2.4.51-150200.3.59.1

SUSE:Enterprise Storage 7.1apache2-worker

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP2-LTSSapache2

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP2-LTSSapache2-devel

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP2-LTSSapache2-doc

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP2-LTSSapache2-prefork

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP2-LTSSapache2-utils

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP2-LTSSapache2-worker

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP3-ESPOSapache2

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP3-ESPOSapache2-devel

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP3-ESPOSapache2-doc

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP3-ESPOSapache2-prefork

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP3-ESPOSapache2-utils

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP3-ESPOSapache2-worker

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP3-LTSSapache2

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP3-LTSSapache2-devel

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP3-LTSSapache2-doc

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP3-LTSSapache2-prefork

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP3-LTSSapache2-utils

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise High Performance Computing 15 SP3-LTSSapache2-worker

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server 15 SP2-LTSSapache2

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server 15 SP2-LTSSapache2-devel

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server 15 SP2-LTSSapache2-doc

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server 15 SP2-LTSSapache2-prefork

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server 15 SP2-LTSSapache2-utils

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server 15 SP2-LTSSapache2-worker

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server 15 SP3-LTSSapache2

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server 15 SP3-LTSSapache2-devel

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server 15 SP3-LTSSapache2-doc

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server 15 SP3-LTSSapache2-prefork

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server 15 SP3-LTSSapache2-utils

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server 15 SP3-LTSSapache2-worker

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP2apache2

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP2apache2-devel

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP2apache2-doc

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP2apache2-prefork

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP2apache2-utils

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP2apache2-worker

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP3apache2

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP3apache2-devel

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP3apache2-doc

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP3apache2-prefork

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP3apache2-utils

Fixed in:

2.4.51-150200.3.59.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP3apache2-worker

Fixed in:

2.4.51-150200.3.59.1

SUSE:Manager Proxy 4.2apache2

Fixed in:

2.4.51-150200.3.59.1

SUSE:Manager Proxy 4.2apache2-devel

Fixed in:

2.4.51-150200.3.59.1

SUSE:Manager Proxy 4.2apache2-doc

Fixed in:

2.4.51-150200.3.59.1

SUSE:Manager Proxy 4.2apache2-prefork

Fixed in:

2.4.51-150200.3.59.1

SUSE:Manager Proxy 4.2apache2-utils

Fixed in:

2.4.51-150200.3.59.1

SUSE:Manager Proxy 4.2apache2-worker

Fixed in:

2.4.51-150200.3.59.1

SUSE:Manager Server 4.2apache2

Fixed in:

2.4.51-150200.3.59.1

SUSE:Manager Server 4.2apache2-devel

Fixed in:

2.4.51-150200.3.59.1

SUSE:Manager Server 4.2apache2-doc

Fixed in:

2.4.51-150200.3.59.1

SUSE:Manager Server 4.2apache2-prefork

Fixed in:

2.4.51-150200.3.59.1

SUSE:Manager Server 4.2apache2-utils

Fixed in:

2.4.51-150200.3.59.1

SUSE:Manager Server 4.2apache2-worker

Fixed in:

2.4.51-150200.3.59.1

References

REPORThttps://bugzilla.suse.com/1207399 REPORThttps://bugzilla.suse.com/1214357 REPORThttps://bugzilla.suse.com/1216424 WEBhttps://www.suse.com/security/cve/CVE-2023-31122 ADVISORYhttps://www.suse.com/support/update/announcement/2023/suse-su-20234431-1/

Upstream

Related

Ecosystems

SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS SUSE Linux Enterprise Server 15 SP2-LTSS SUSE Linux Enterprise Server 15 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2

Timeline

PublishedNov 13, 2023

ModifiedNov 13, 2023