SUSE-SU-2021:3522-1 -- SLES apache2ID: oval:org.secpod.oval:def:89047110 | Date: (C)2022-10-21 (M)2024-01-29 |
Class: PATCH | Family: unix |
This update for apache2 fixes the following issues: - CVE-2021-40438: Fixed a SRF via a crafted request uri-path. - CVE-2021-36160: Fixed an out-of-bounds read via a crafted request uri-path. - CVE-2021-39275: Fixed an out-of-bounds write in ap_escape_quotes via malicious input. - CVE-2021-34798: Fixed a NULL pointer dereference via malformed requests
Platform: |
SUSE Linux Enterprise Server 15 SP2 |
SUSE Linux Enterprise Server 15 SP3 |
SUSE Linux Enterprise Desktop 15 SP2 |
SUSE Linux Enterprise Desktop 15 SP3 |