Oracle Linux 9 mod_http2 Moderate DoS Vulnerability ELSA-2026-22551

oracle

June 26, 2026

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

[2.0.26-6.1] - Resolves: RHEL-182417 - mod_http2: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack (CVE-2026-49975) [2.0.26-6] - Resolves: RHEL-166293 - httpd: Apache HTTP Server: HTTP/2 DoS by Memory Increase (CVE-2025-53020)

Topics Covered

security advisory moderate remote denial of service Oracle HTTP2

SRPMs

http://oss.oracle.com/ol9/SRPMS-updates/mod_http2-2.0.26-6.el9_8.1.src.rpm

x86_64

mod_http2-2.0.26-6.el9_8.1.x86_64.rpm

aarch64

mod_http2-2.0.26-6.el9_8.1.aarch64.rpm

Severity

moderate

Lowest

Low

Medium

High

Critical

Related CVEs: CVE-2025-53020

Topics Covered

security advisory moderate remote denial of service Oracle HTTP2

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Oracle Linux 9 mod_http2 Moderate DoS Vulnerability ELSA-2026-22551

Summary

Topics Covered

SRPMs

x86_64

aarch64

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Oracle Linux 9 mod_http2 Moderate DoS Vulnerability ELSA-2026-22551

Summary

Topics Covered

SRPMs

x86_64

aarch64

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!