Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Oracle Linux 10 mod_http2 Moderate Remote DoS Update ELSA-2026-34355

oracle
Calendar Grey July 17, 2026
Scroller Oracle
Updates for Oracle Linux 10 address multiple issues in mod_http2 with moderate severity including remote denial of service.
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

Summary

[2.0.29-4.2] - Resolves: RHEL-188008 - address CVE-2026-43951, CVE-2026-48913 [2.0.29-4.1] - Resolves: RHEL-182410 - mod_http2: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack (CVE-2026-49975) [2.0.29-4] - Resolves: RHEL-166269 - httpd: Apache HTTP Server: HTTP/2 DoS by Memory Increase (CVE-2025-53020)

SRPMs

http://oss.oracle.com/ol10/SRPMS-updates/mod_http2-2.0.29-4.el10_2.2.src.rpm

x86_64

mod_http2-2.0.29-4.el10_2.2.x86_64.rpm

aarch64

mod_http2-2.0.29-4.el10_2.2.aarch64.rpm

Severity
moderate
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2026-43951 CVE-2026-48913

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.