ELBA-2023-12091

ELBA-2023-12091 - httpd bug fix update

Type:	BUG
Severity:	NA
Release Date:	2023-01-30

Description

[2.4.6-98.0.3]
- mod_proxy: ap_proxy_http_request() to clear hop-by-hop first and
fixup last [CVE-2022-31813][Orabug: 34381850]
- mod_session: save one apr_strtok() [Orabug: 33338149][CVE-2021-26690]

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory
Oracle Linux 7 (aarch64)	httpd-2.4.6-98.0.3.el7_9.6.src.rpm	7dfc507acbe7340674ceb2448f2653b1	-
	httpd-2.4.6-98.0.3.el7_9.6.aarch64.rpm	194d29b033a0cfb5329800cb8f5bb4c3	-
	httpd-devel-2.4.6-98.0.3.el7_9.6.aarch64.rpm	b6d72ad0871a3ddb1073561bd0d6a2d3	-
	httpd-manual-2.4.6-98.0.3.el7_9.6.noarch.rpm	04f10fc82ce3e982f7cbd3192a57614a	-
	httpd-tools-2.4.6-98.0.3.el7_9.6.aarch64.rpm	c09a1f0d995f0e9b7305d35225a2c824	-
	mod_ldap-2.4.6-98.0.3.el7_9.6.aarch64.rpm	7a1b236267927bb5cc6d5b54b6d9467f	-
	mod_proxy_html-2.4.6-98.0.3.el7_9.6.aarch64.rpm	4060f9a82fc762af4a2c301e76732f66	-
	mod_session-2.4.6-98.0.3.el7_9.6.aarch64.rpm	a69ce677cc07cbc7d7f8d293cf6a34cd	-
	mod_ssl-2.4.6-98.0.3.el7_9.6.aarch64.rpm	736e0278b8d3b9c87845762ff772e25d	-
Oracle Linux 7 (x86_64)	httpd-2.4.6-98.0.3.el7_9.6.src.rpm	7dfc507acbe7340674ceb2448f2653b1	-
	httpd-2.4.6-98.0.3.el7_9.6.x86_64.rpm	c517eed3485f2e53be59ceeacba37b81	-
	httpd-devel-2.4.6-98.0.3.el7_9.6.x86_64.rpm	16282025ad9c584742a38677dda905f7	-
	httpd-manual-2.4.6-98.0.3.el7_9.6.noarch.rpm	04f10fc82ce3e982f7cbd3192a57614a	-
	httpd-tools-2.4.6-98.0.3.el7_9.6.x86_64.rpm	7e2959bac95e908001cc7bb108acbb79	-
	mod_ldap-2.4.6-98.0.3.el7_9.6.x86_64.rpm	888d728056140920dbc059e7805e0bf7	-
	mod_proxy_html-2.4.6-98.0.3.el7_9.6.x86_64.rpm	cd7dc2df2dfd5c1bd7273be679e1c354	-
	mod_session-2.4.6-98.0.3.el7_9.6.x86_64.rpm	9a1ab25b9e83278a5a98dce5df9cc4d7	-
	mod_ssl-2.4.6-98.0.3.el7_9.6.x86_64.rpm	d9f4e2cb7fdb5d6a01005b99486a8180	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team