oval:org.mitre.oval:def:25551

Definition Id: oval:org.mitre.oval:def:25551
 
Oval ID: oval:org.mitre.oval:def:25551
Title: SUSE-SU-2013:1381-1 -- Security update for Apache2
Description: This collective update for Apache provides the following fixes: * Make sure that input that has already arrived on the socket is not discarded during a non-blocking read (read(2) returns 0 and errno is set to -EAGAIN). (bnc#815621) * Close the connection just before an attempted re-negotiation if data has been read with pipelining. This is done by resetting the keepalive status. (bnc#815621) * Reset the renegotiation status of a client<->server connection to RENEG_INIT to prevent falsely assumed status. (bnc#791794) * "OPTIONS *" internal requests are intercepted by a dummy filter that kicks in for the OPTIONS method. Apple iPrint uses "OPTIONS *" to upgrade the connection to TLS/1.0 following RFC 2817. For compatibility, check if an Upgrade request header is present and skip the filter if yes. (bnc#791794) * Sending a MERGE request against a URI handled by mod_dav_svn with the source href (sent as part of the request body as XML) pointing to a URI that is not configured for DAV will trigger a segfault. (bnc#829056, CVE-2013-1896) * Client data written to the RewriteLog must have terminal escape sequences escaped. (bnc#829057, CVE-2013-1862)
Family: unix Class: patch
Reference(s): SUSE-SU-2013:1381-1
CVE-2013-1896
CVE-2013-1862
 Version: 3
Platform(s): SUSE Linux Enterprise Server 11
 Product(s): Apache2
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:17270
 
Oval ID: oval:org.mitre.oval:def:17270
Title: SUSE Linux Enterprise Server 11.x is installed
Description: SUSE Linux Enterprise Server 11.x is installed.
Family: unix Class: inventory
Reference(s): cpe:/o:novell:suse_linux:11::server
 Version: 5
Platform(s): SUSE Linux Enterprise Server 11
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:25551