Уведомление безопасности SUSE-SA:2009:050

Критичная (10.0)

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

SUSE

apache2 (any) apache2-debuginfo (any) apache2-debugsource (any) apache2-devel (any) apache2-doc (any) apache2-example-pages (any) apache2-prefork (any) apache2-utils (any) apache2-worker (any) libapr0 (any) libapr1 (any) libapr1-32bit (any) libapr1-64bit (any) libapr1-debuginfo (any) libapr1-debuginfo-32bit (any) libapr1-debugsource (any) libapr1-devel (any) libapr1-devel-32bit (any) libapr1-devel-64bit (any) libapr-util1 (any) libapr-util1-32bit (any) libapr-util1-64bit (any) libapr-util1-dbd-mysql (any) libapr-util1-dbd-pgsql (any) libapr-util1-dbd-sqlite3 (any) libapr-util1-debuginfo (any) libapr-util1-debuginfo-32bit (any) libapr-util1-debugsource (any) libapr-util1-devel (any) libapr-util1-devel-32bit (any) libapr-util1-devel-64bit (any)

Уведомление безопасности об уязвимостях openSUSE 10.3, openSUSE 11.0, openSUSE 11.1, SUSE SLES 9, Novell Linux Desktop 9, Open Enterprise Server, Novell Linux POS 9, SLE SDK 10 SP2, SLE SDK 10 SP3, SUSE Linux Enterprise Desktop 10 SP2, SUSE Linux Enterprise Desktop 10 SP3, SUSE Linux Enterprise 10 SP2 DEBUGINFO, SUSE Linux Enterprise Server 10 SP2, SUSE Linux Enterprise 10 SP3 DEBUGINFO, SUSE Linux Enterprise Server 10 SP3, SLES 11 DEBUGINFO, SLE 11, SLES 11

Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
openSUSE 10.3:
i586:
apache2-prefork - 2.2.4-70.11
apache2-utils - 2.2.4-70.11
libapr-util1 - 1.2.8-68.4
libapr1 - 1.2.9-9.2
libapr-util1-devel - 1.2.8-68.4
libapr1-devel - 1.2.9-9.2
libapr-util1-dbd-sqlite3 - 1.2.8-68.4
apache2-devel - 2.2.4-70.11
apache2-doc - 2.2.4-70.11
libapr-util1-dbd-pgsql - 1.2.8-68.4
apache2 - 2.2.4-70.11
apache2-example-pages - 2.2.4-70.11
apache2-worker - 2.2.4-70.11
libapr-util1-dbd-mysql - 1.2.8-68.4
openSUSE 11.1:
i586:
apache2-prefork - 2.2.10-2.8.1
libapr1-debugsource - 1.3.3-12.2.1
libapr-util1-dbd-pgsql - 1.3.4-13.3.2
apache2-worker - 2.2.10-2.8.1
libapr-util1-dbd-mysql - 1.3.4-13.3.2
apache2-debuginfo - 2.2.10-2.8.1
apache2-devel - 2.2.10-2.8.1
apache2-doc - 2.2.10-2.8.1
libapr-util1 - 1.3.4-13.3.2
apache2-utils - 2.2.10-2.8.1
libapr-util1-devel - 1.3.4-13.3.2
libapr1-devel - 1.3.3-12.2.1
libapr-util1-debuginfo - 1.3.4-13.3.2
apache2-example-pages - 2.2.10-2.8.1
libapr-util1-dbd-sqlite3 - 1.3.4-13.3.2
apache2 - 2.2.10-2.8.1
libapr-util1-debugsource - 1.3.4-13.3.2
apache2-debugsource - 2.2.10-2.8.1
libapr1 - 1.3.3-12.2.1
libapr1-debuginfo - 1.3.3-12.2.1
openSUSE 11.0:
i586:
apache2-utils - 2.2.8-28.8
libapr-util1-devel - 1.2.12-43.4
libapr1-devel - 1.2.12-27.2
apache2-debuginfo - 2.2.8-28.8
apache2-worker - 2.2.8-28.8
libapr1-debugsource - 1.2.12-27.2
libapr-util1-dbd-pgsql - 1.2.12-43.4
apache2-debugsource - 2.2.8-28.8
libapr-util1-debugsource - 1.2.12-43.4
libapr-util1-dbd-mysql - 1.2.12-43.4
apache2-prefork - 2.2.8-28.8
libapr-util1 - 1.2.12-43.4
apache2-example-pages - 2.2.8-28.8
libapr-util1-debuginfo - 1.2.12-43.4
apache2-devel - 2.2.8-28.8
libapr-util1-dbd-sqlite3 - 1.2.12-43.4
libapr1 - 1.2.12-27.2
apache2-doc - 2.2.8-28.8
libapr1-debuginfo - 1.2.12-27.2
apache2 - 2.2.8-28.8
SUSE Linux Enterprise Software Development Kit 10 SP3:
ia64:
apache2 - 2.2.3-16.28.1
apache2-devel - 2.2.3-16.28.1
apache2-doc - 2.2.3-16.28.1
apache2-example-pages - 2.2.3-16.28.1
apache2-prefork - 2.2.3-16.28.1
apache2-worker - 2.2.3-16.28.1
libapr-util1-devel - 1.2.2-13.9.1
libapr1-devel - 1.2.2-13.8.1
Novell Linux Desktop 9:
i586:
libapr0 - 2.0.59-1.14
SUSE Linux Enterprise Server 11:
ppc64:
libapr-util1 - 1.3.4-12.20.2
libapr-util1-32bit - 1.3.4-12.20.2
libapr1 - 1.3.3-11.16.1
libapr1-32bit - 1.3.3-11.16.1
libapr-util1-debuginfo - 1.3.4-12.20.2
libapr-util1-debuginfo-32bit - 1.3.4-12.20.2
libapr-util1-debugsource - 1.3.4-12.20.2
libapr1-debuginfo - 1.3.3-11.16.1
libapr1-debuginfo-32bit - 1.3.3-11.16.1
libapr1-debugsource - 1.3.3-11.16.1
apache2-debuginfo - 2.2.10-2.21.1
apache2-debugsource - 2.2.10-2.21.1
SUSE SUSE Linux Enterprise Software Development Kit 10 SP2:
ia64:
apache2 - 2.2.3-16.25.4
apache2-devel - 2.2.3-16.25.4
apache2-doc - 2.2.3-16.25.4
apache2-example-pages - 2.2.3-16.25.4
apache2-prefork - 2.2.3-16.25.4
apache2-worker - 2.2.3-16.25.4
libapr-util1-devel - 1.2.2-13.10.1
libapr1-devel - 1.2.2-13.8.2
SUSE Linux Enterprise Server 9:
ia64:
apache2 - 2.0.59-1.14
apache2-devel - 2.0.59-1.14
apache2-doc - 2.0.59-1.14
apache2-example-pages - 2.0.59-1.14
apache2-prefork - 2.0.59-1.14
apache2-worker - 2.0.59-1.14
libapr0 - 2.0.59-1.14
SUSE Linux Enterprise Server 10 SP3:
ia64:
apache2 - 2.2.3-16.28.1
apache2-devel - 2.2.3-16.28.1
apache2-doc - 2.2.3-16.28.1
apache2-example-pages - 2.2.3-16.28.1
apache2-prefork - 2.2.3-16.28.1
apache2-worker - 2.2.3-16.28.1
apache2-debuginfo - 2.2.3-16.28.1
libapr-util1 - 1.2.2-13.9.1
libapr-util1-devel - 1.2.2-13.9.1
libapr1 - 1.2.2-13.8.1
libapr1-devel - 1.2.2-13.8.1
SUSE Linux Enterprise Server 10 SP2:
ia64:
apache2 - 2.2.3-16.25.4
apache2-devel - 2.2.3-16.25.4
apache2-doc - 2.2.3-16.25.4
apache2-example-pages - 2.2.3-16.25.4
apache2-prefork - 2.2.3-16.25.4
apache2-worker - 2.2.3-16.25.4
apache2-debuginfo - 2.2.3-16.25.4
libapr-util1 - 1.2.2-13.10.1
libapr-util1-devel - 1.2.2-13.10.1
libapr1 - 1.2.2-13.8.2
libapr1-devel - 1.2.2-13.8.2
SUSE Linux Enterprise Desktop 10 SP3:
i586:
libapr-util1 - 1.2.2-13.9.1
libapr-util1-devel - 1.2.2-13.9.1
libapr1 - 1.2.2-13.8.1
libapr1-devel - 1.2.2-13.8.1
SUSE Linux Enterprise Desktop 10 SP2:
i586:
libapr-util1 - 1.2.2-13.10.1
libapr-util1-devel - 1.2.2-13.10.1
libapr1 - 1.2.2-13.8.2
libapr1-devel - 1.2.2-13.8.2
SUSE Linux Enterprise Software Development Kit 11:
ppc64:
libapr-util1-devel - 1.3.4-12.20.2
libapr-util1-devel-32bit - 1.3.4-12.20.2
libapr1-devel - 1.3.3-11.16.1
libapr1-devel-32bit - 1.3.3-11.16.1
apache2-devel - 2.2.10-2.21.1
Novell Linux Point of Service 9:
i586:
apache2 - 2.0.59-1.14
apache2-devel - 2.0.59-1.14
apache2-doc - 2.0.59-1.14
apache2-example-pages - 2.0.59-1.14
apache2-prefork - 2.0.59-1.14
apache2-worker - 2.0.59-1.14
libapr0 - 2.0.59-1.14
Novell Open Enterprise Server (OES):
i586:
apache2 - 2.0.59-1.14
apache2-devel - 2.0.59-1.14
apache2-doc - 2.0.59-1.14
apache2-example-pages - 2.0.59-1.14
apache2-prefork - 2.0.59-1.14
apache2-worker - 2.0.59-1.14
libapr0 - 2.0.59-1.14

https://www.suse.com/support/security/advisories/2009_50_apache.html

Источник: CVE
Наименование: CVE-2009-2412
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2412

Источник: CVE
Наименование: CVE-2009-1195
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1195

Источник: CVE
Наименование: CVE-2009-1890
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1890

Источник: CVE
Наименование: CVE-2009-1891
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1891

Источник: CVE
Наименование: CVE-2009-3094
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3094

Источник: CVE
Наименование: CVE-2009-3095
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3095