Explore top 10 tips to secure your open-source projects now. Read More
×
This update for apache2 fixes the following issues: The following security vulnerabilities were fixed: - CVE-2018-1333: Fixed a worker exhaustion that could have lead to a denial of service via specially crafted HTTP/2 requests (bsc#1101689). - CVE-2018-8011: Fixed a null pointer dereference in mod_md, which could have lead to a denial of service via specially crafted HTTP requests (bsc#1101688). Note: We are currently not shipping this modules, since it is still considered experimental, but we might start to ship it with future releases. Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Server Applications 15:
#1101688 #1101689
Cross- CVE-2018-1333 CVE-2018-8011
Affected Products:
SUSE Linux Enterprise Module for Server Applications 15
https://www.suse.com/security/cve/CVE-2018-1333.html
https://www.suse.com/security/cve/CVE-2018-8011.html
https://bugzilla.suse.com/1101688
https://bugzilla.suse.com/1101689
Get the latest Linux and open source security news straight to your inbox.