What Are You Looking For?

Sign Up
Oracle Linux Security Advisory ELSA-2022-1045

https://linux.oracle.com/errata/ELSA-2022-1045.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
httpd-2.4.6-97.0.5.el7_9.5.x86_64.rpm
httpd-devel-2.4.6-97.0.5.el7_9.5.x86_64.rpm
httpd-manual-2.4.6-97.0.5.el7_9.5.noarch.rpm
httpd-tools-2.4.6-97.0.5.el7_9.5.x86_64.rpm
mod_ldap-2.4.6-97.0.5.el7_9.5.x86_64.rpm
mod_proxy_html-2.4.6-97.0.5.el7_9.5.x86_64.rpm
mod_session-2.4.6-97.0.5.el7_9.5.x86_64.rpm
mod_ssl-2.4.6-97.0.5.el7_9.5.x86_64.rpm


SRPMS:
https://oss.oracle.com/ol7/SRPMS-updates/httpd-2.4.6-97.0.5.el7_9.5.src.rpm

Related CVEs:

CVE-2022-22720




Description of changes:

[2.4.6-97.0.5.5]
- mod_session: save one apr_strtok() [Orabug: 33338149][CVE-2021-26690]
- replace index.html with Oracle's index page oracle_index.html

[2.4.6-97.5]
- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier

_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle7: ELSA-2022-1045: httpd Important Security Update

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

Summary

[2.4.6-97.0.5.5] - mod_session: save one apr_strtok() [Orabug: 33338149][CVE-2021-26690] - replace index.html with Oracle's index page oracle_index.html [2.4.6-97.5] - Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier

SRPMs

https://oss.oracle.com/ol7/SRPMS-updates/httpd-2.4.6-97.0.5.el7_9.5.src.rpm

x86_64

httpd-2.4.6-97.0.5.el7_9.5.x86_64.rpm httpd-devel-2.4.6-97.0.5.el7_9.5.x86_64.rpm httpd-manual-2.4.6-97.0.5.el7_9.5.noarch.rpm httpd-tools-2.4.6-97.0.5.el7_9.5.x86_64.rpm mod_ldap-2.4.6-97.0.5.el7_9.5.x86_64.rpm mod_proxy_html-2.4.6-97.0.5.el7_9.5.x86_64.rpm mod_session-2.4.6-97.0.5.el7_9.5.x86_64.rpm mod_ssl-2.4.6-97.0.5.el7_9.5.x86_64.rpm

aarch64

i386

Severity
Related CVEs: CVE-2022-22720

Related News

Linux version of Qilin ransomware focuses on VMware ESXi

Dec 4, 2023

Kali Linux 2023.4 Released With New Hacking Tools

Dec 6, 2023

Linus Torvalds on the State of Linux Today and How AI Figures in Its Future

Dec 6, 2023

How Meta Patches Linux at Hyperscale

Dec 2, 2023

News

Advisories

HOWTOs

Features

Using Open Source to Ensure Compliance & Data Integrity through Data Governance
Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024

About Us

Powered By

Footer Logo