Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Oracle Linux 9 ELSA-2024-4726 Critical: Httpd Security Update

oracle
Calendar Grey July 25, 2024
Oracle Linux Logo Esm H88
The latest updates for Oracle Linux 9's httpd component have addressed significant security issues. Learn more about the specifics here.
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

[2.4.57-11.0.1] - Replace index.html with Oracle's index page oracle_index.html. [2.4.57-11] - Resolves: RHEL-45792 - httpd: Encoding problem in mod_proxy (CVE-2024-38473) [2.4.57-9] - Resolves: RHEL-45766 - httpd: null pointer dereference in mod_proxy (CVE-2024-38477) - Resolves: RHEL-45749 - httpd: Potential SSRF in mod_rewrite (CVE-2024-39573) - Resolves: RHEL-45818 - httpd: Substitution encoding issue in mod_rewrite (CVE-2024-38474) - Resolves: RHEL-45771 - httpd: Improper escaping of output in mod_rewrite (CVE-2024-38475)

Topics%20covered

Topics Covered

security advisory buffer overflow critical httpd important update Oracle Linux

SRPMs

http://oss.oracle.com/ol9/SRPMS-updates//httpd-2.4.57-11.0.1.el9_4.src.rpm

x86_64

httpd-2.4.57-11.0.1.el9_4.x86_64.rpm httpd-core-2.4.57-11.0.1.el9_4.x86_64.rpm httpd-devel-2.4.57-11.0.1.el9_4.x86_64.rpm httpd-filesystem-2.4.57-11.0.1.el9_4.noarch.rpm httpd-manual-2.4.57-11.0.1.el9_4.noarch.rpm httpd-tools-2.4.57-11.0.1.el9_4.x86_64.rpm mod_ldap-2.4.57-11.0.1.el9_4.x86_64.rpm mod_lua-2.4.57-11.0.1.el9_4.x86_64.rpm mod_proxy_html-2.4.57-11.0.1.el9_4.x86_64.rpm mod_session-2.4.57-11.0.1.el9_4.x86_64.rpm mod_ssl-2.4.57-11.0.1.el9_4.x86_64.rpm

aarch64

httpd-2.4.57-11.0.1.el9_4.aarch64.rpm httpd-core-2.4.57-11.0.1.el9_4.aarch64.rpm httpd-devel-2.4.57-11.0.1.el9_4.aarch64.rpm httpd-filesystem-2.4.57-11.0.1.el9_4.noarch.rpm httpd-manual-2.4.57-11.0.1.el9_4.noarch.rpm httpd-tools-2.4.57-11.0.1.el9_4.aarch64.rpm mod_ldap-2.4.57-11.0.1.el9_4.aarch64.rpm mod_lua-2.4.57-11.0.1.el9_4.aarch64.rpm mod_proxy_html-2.4.57-11.0.1.el9_4.aarch64.rpm mod_session-2.4.57-11.0.1.el9_4.aarch64.rpm mod_ssl-2.4.57-11.0.1.el9_4.aarch64.rpm

Severity
critical
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2024-38473 CVE-2024-38474 CVE-2024-38475 CVE-2024-38477 CVE-2024-39573

Topics%20covered

Topics Covered

security advisory buffer overflow critical httpd important update Oracle Linux

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here