{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"important"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2004-0885","title":"Title"},{"category":"description","text":"The mod_ssl module in Apache 2.0.35 through 2.0.52, when using the \"SSLCipherSuite\" directive in directory or location context, allows remote clients to bypass intended restrictions by using any cipher suite that is allowed by the virtual host configuration.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2004-0885","url":"https://www.suse.com/security/cve/CVE-2004-0885"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 62117 for CVE-2004-0885","url":"https://bugzilla.suse.com/62117"},{"category":"external","summary":"SUSE Bug 62740 for CVE-2004-0885","url":"https://bugzilla.suse.com/62740"},{"category":"external","summary":"SUSE Bug 62967 for CVE-2004-0885","url":"https://bugzilla.suse.com/62967"},{"category":"external","summary":"Advisory link for SUSE-SA:2004:040","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/QPUVV23W53DAOCPMS4AUPK4KE3CRURRK/#QPUVV23W53DAOCPMS4AUPK4KE3CRURRK"},{"category":"external","summary":"Advisory link for SUSE-SA:2004:041","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/LXLAMCA333MF6BX2JYVPDPFA6KBVPJ63/#LXLAMCA333MF6BX2JYVPDPFA6KBVPJ63"},{"category":"external","summary":"Advisory link for SUSE-SR:2004:001","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/QKWBZAJPSEUG66DHL2A6BZAADTEPNOAG/#QKWBZAJPSEUG66DHL2A6BZAADTEPNOAG"}],"title":"SUSE CVE CVE-2004-0885","tracking":{"current_release_date":"2023-12-09T03:44:33Z","generator":{"date":"2023-02-15T06:20:21Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2004-0885","initial_release_date":"2023-02-15T06:20:21Z","revision_history":[{"date":"2023-02-15T06:20:21Z","number":"2","summary":"Current version"},{"date":"2023-12-08T05:23:00Z","number":"3","summary":"Current version"},{"date":"2023-12-09T03:44:33Z","number":"4","summary":"Current version"}],"status":"interim","version":"4"}}}