Security update for apache2
This update for apache2 fixes the following issues:
Security issues fixed:
- CVE-2018-11763: In Apache HTTP Server by sending continuous, large SETTINGS frames a client can occupy a connection, server thread and CPU time without any connection timeout coming to effect. This affects only HTTP/2 connections. (bsc#1109961)
This update was imported from the SUSE:SLE-12-SP2:Update update project.
- Submitted by Petr Gajdos (pgajdos)
Fixed bugs
bnc#1109961
VUL-0: CVE-2018-11763: apache2: DoS for HTTP/2 connections by continuous SETTINGS