Oracle Linux Security Advisory ELSA-2023-1696 https://linux.oracle.com/errata/ELSA-2023-1696.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: haproxy-2.4.17-3.el9_1.2.x86_64.rpm aarch64: haproxy-2.4.17-3.el9_1.2.aarch64.rpm SRPMS: https://oss.oracle.com/ol9/SRPMS-updates//haproxy-2.4.17-3.el9_1.2.src.rpm Related CVEs: CVE-2023-0056 CVE-2023-25725 Description of changes: [2.4.17-3.2] - Reject empty http header field names (CVE-2023-25725, #2174174) [2.4.17-3.1] - Refuse interim responses with end-stream flag set (CVE-2023-0056, #2174172) _______________________________________________ El-errata mailing list [email protected] https://oss.oracle.com/mailman/listinfo/el-errata
Oracle9: ELSA-2023-1696: haproxy security Moderate Security Update
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
Summary
[2.4.17-3.2] - Reject empty http header field names (CVE-2023-25725, #2174174) [2.4.17-3.1] - Refuse interim responses with end-stream flag set (CVE-2023-0056, #2174172)
SRPMs
https://oss.oracle.com/ol9/SRPMS-updates//haproxy-2.4.17-3.el9_1.2.src.rpm
x86_64
haproxy-2.4.17-3.el9_1.2.x86_64.rpm
aarch64
haproxy-2.4.17-3.el9_1.2.aarch64.rpm
i386
Severity
Related CVEs:
CVE-2023-0056
CVE-2023-25725
News
HOWTOs
About Us
Powered By
