Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Oracle Linux 9 ELSA-2025-3261 Moderate: nginx Denial of Service Fix

oracle
Calendar Grey April 1, 2025
Oracle Linux Logo Esm H88
Oracle Linux 9 security notifications for nginx tackle severe vulnerabilities and bolster protection protocols for users.
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

[1.22.1-8.0.1.1] - Reference oracle-indexhtml within Requires [Orabug: 33802044] - Remove Red Hat references [Orabug: 29498217] [1:1.22.1-8.1] - Resolves: RHEL-84486 - nginx:1.22/nginx: specially crafted MP4 file may cause denial of service (CVE-2024-7347) [1:1.22.1-8] - Resolves: RHEL-49349 - nginx worker processes memory leak [1:1.22.1-7] - Resolves: RHEL-40621 - openssl 3.2 ENGINE regression in nginx [1:1.22.1-6] - Resolves: RHEL-32650 - Nginx seg faults when proxy_ssl_certificate is set [1:1.22.1-5] - Resolves: RHEL-12737 - nginx:1.22/nginx: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487) [1:1.22.1-4] - Resolves: #2170808 - Running nginx with systemctl and entering ssl private key's pass phrase - added new ssl_pass_phrase_dialog directive which enables setting external program for entering password for encrypted private key

Topics%20covered

Topics Covered

security advisory moderate software update DoS nginx Oracle Linux

SRPMs

http://oss.oracle.com/ol9/SRPMS-updates//nginx-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.src.rpm

x86_64

nginx-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.x86_64.rpm nginx-all-modules-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.noarch.rpm nginx-core-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.x86_64.rpm nginx-filesystem-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.noarch.rpm nginx-mod-devel-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.x86_64.rpm nginx-mod-http-image-filter-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.x86_64.rpm nginx-mod-http-perl-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.x86_64.rpm nginx-mod-http-xslt-filter-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.x86_64.rpm nginx-mod-mail-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.x86_64.rpm nginx-mod-stream-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.x86_64.rpm

aarch64

nginx-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.aarch64.rpm nginx-all-modules-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.noarch.rpm nginx-core-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.aarch64.rpm nginx-filesystem-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.noarch.rpm nginx-mod-devel-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.aarch64.rpm nginx-mod-http-image-filter-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.aarch64.rpm nginx-mod-http-perl-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.aarch64.rpm nginx-mod-http-xslt-filter-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.aarch64.rpm nginx-mod-mail-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.aarch64.rpm nginx-mod-stream-1.22.1-8.0.1.module+el9.5.0+90542+e87a1bbf.1.aarch64.rpm

Related CVEs: CVE-2024-7347

Topics%20covered

Topics Covered

security advisory moderate software update DoS nginx Oracle Linux

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here