ELSA-2017-2479
- ULN >
- Oracle Linux Errata repository >
- ELSA-2017-2479
ELSA-2017-2479 - httpd security update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2017-08-15 |
Description
[2.4.6-67.0.1.el7_4.2]
- replace index.html with Oracle's index page oracle_index.html
[2.4.6-67.2]
- Resolves: #1463194 - CVE-2017-3167 httpd: ap_get_basic_auth_pw()
authentication bypass
- Resolves: #1463197 - CVE-2017-3169 httpd: mod_ssl NULL pointer dereference
- Resolves: #1463207 - CVE-2017-7679 httpd: mod_mime buffer overread
- Resolves: #1463205 - CVE-2017-7668 httpd: ap_find_token() buffer overread
- Resolves: #1470748 - CVE-2017-9788 httpd: Uninitialized memory reflection
in mod_auth_digest
Related CVEs
| CVE-2017-3167 |
| CVE-2017-3169 |
| CVE-2017-7679 |
| CVE-2017-9788 |
| CVE-2017-7668 |
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
| Oracle Linux 7 (x86_64) | httpd-2.4.6-67.0.1.el7_4.2.src.rpm | bffbb76125826176ec070c1b1360b013 | ELBA-2020-5033 |
| httpd-2.4.6-67.0.1.el7_4.2.x86_64.rpm | 3f24abebc1de168a9bfc7a79f938d511 | ELBA-2020-5033 | |
| httpd-devel-2.4.6-67.0.1.el7_4.2.x86_64.rpm | c2274d7eaea0cb8020a4e55bc614ae1d | ELBA-2020-5033 | |
| httpd-manual-2.4.6-67.0.1.el7_4.2.noarch.rpm | 9fa9a3d9f538da8f2ba1d130333b40cb | ELBA-2020-5033 | |
| httpd-tools-2.4.6-67.0.1.el7_4.2.x86_64.rpm | fc655e89e0ed910077b3e614eff779bd | ELBA-2020-5033 | |
| mod_ldap-2.4.6-67.0.1.el7_4.2.x86_64.rpm | 0911ba7c943ba14c248849bea413c333 | ELBA-2020-5033 | |
| mod_proxy_html-2.4.6-67.0.1.el7_4.2.x86_64.rpm | 859ae70bd6a3439f7026e63b507e991b | ELBA-2020-5033 | |
| mod_session-2.4.6-67.0.1.el7_4.2.x86_64.rpm | c95ecea5238b7bdc1892f9edaf0585ab | ELBA-2020-5033 | |
| mod_ssl-2.4.6-67.0.1.el7_4.2.x86_64.rpm | 9c09b309c157910e862c6e4f272d3392 | ELBA-2020-5033 | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
