Oracle7: ELSA-2023-1593: httpd security Important Security Update |...

What Are You Looking For?

Popular Tags

Sign Up
Oracle Linux Security Advisory ELSA-2023-1593

https://linux.oracle.com/errata/ELSA-2023-1593.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
httpd-2.4.6-98.0.3.el7_9.7.x86_64.rpm
httpd-devel-2.4.6-98.0.3.el7_9.7.x86_64.rpm
httpd-manual-2.4.6-98.0.3.el7_9.7.noarch.rpm
httpd-tools-2.4.6-98.0.3.el7_9.7.x86_64.rpm
mod_ldap-2.4.6-98.0.3.el7_9.7.x86_64.rpm
mod_proxy_html-2.4.6-98.0.3.el7_9.7.x86_64.rpm
mod_session-2.4.6-98.0.3.el7_9.7.x86_64.rpm
mod_ssl-2.4.6-98.0.3.el7_9.7.x86_64.rpm


SRPMS:
https://oss.oracle.com/ol7/SRPMS-updates//httpd-2.4.6-98.0.3.el7_9.7.src.rpm

Related CVEs:

CVE-2023-25690




Description of changes:

[2.4.6-98.0.3]
- mod_proxy: ap_proxy_http_request() to clear hop-by-hop first and
  fixup last [CVE-2022-31813][Orabug: 34381850]
- mod_session: save one apr_strtok() [Orabug: 33338149][CVE-2021-26690]

[2.4.6-98.0.1]
- replace index.html with Oracle's index page oracle_index.html

[2.4.6-97.7]
- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy

_______________________________________________
El-errata mailing list
[email protected]
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle7: ELSA-2023-1593: httpd security Important Security Update

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

Summary

[2.4.6-98.0.3] - mod_proxy: ap_proxy_http_request() to clear hop-by-hop first and fixup last [CVE-2022-31813][Orabug: 34381850] - mod_session: save one apr_strtok() [Orabug: 33338149][CVE-2021-26690] [2.4.6-98.0.1] - replace index.html with Oracle's index page oracle_index.html [2.4.6-97.7] - Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with mod_rewrite and mod_proxy

SRPMs

https://oss.oracle.com/ol7/SRPMS-updates//httpd-2.4.6-98.0.3.el7_9.7.src.rpm

x86_64

httpd-2.4.6-98.0.3.el7_9.7.x86_64.rpm httpd-devel-2.4.6-98.0.3.el7_9.7.x86_64.rpm httpd-manual-2.4.6-98.0.3.el7_9.7.noarch.rpm httpd-tools-2.4.6-98.0.3.el7_9.7.x86_64.rpm mod_ldap-2.4.6-98.0.3.el7_9.7.x86_64.rpm mod_proxy_html-2.4.6-98.0.3.el7_9.7.x86_64.rpm mod_session-2.4.6-98.0.3.el7_9.7.x86_64.rpm mod_ssl-2.4.6-98.0.3.el7_9.7.x86_64.rpm

aarch64

i386

Severity
Related CVEs: CVE-2023-25690

Related News

Kali Linux 2023.2 Released with 13 New Tools, Pre-Built HyperV Image

New Linux Ransomware Strain BlackSuit Shows Striking Similarities to Royal

Important Linux Kernel DoS, Code Execution Bugs Fixed

New GobRAT Remote Access Trojan Targeting Linux Routers in Japan

News

Advisories

HOWTOs

Features

Linux Container Security Primer
Email Phishing Using Kali Linux
Is Linux A More Secure Option Than Windows For Businesses?
How Secure Is Linux?
How To Secure Against WordPress Vulnerabilities with Predictive Analysis Detection & Automated Remediation

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy