ELSA-2019-2258

ULN >
Oracle Linux Errata repository >
ELSA-2019-2258

ELSA-2019-2258 - http-parser security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2019-08-13

Description

[2.7.1-8]
- Backport needed test fixes
- Related: rhbz#1666024 - CVE-2018-7159 http-parser: nodejs: HTTP parser
allowed for spaces inside Content-Length header
values [rhel-7]

[2.7.1-7]
- Resolves: rhbz#1666024 - CVE-2018-7159 http-parser: nodejs: HTTP parser
allowed for spaces inside Content-Length header
values [rhel-7]

[2.7.1-6]
- Resolves: rhbz#1666381 - CVE-2018-12121 http-parser: nodejs: Denial of
Service with large HTTP headers [rhel-7]

Related CVEs

CVE-2018-7159

CVE-2018-12121

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	http-parser-2.7.1-8.el7.src.rpm	2003085eb0724f90bc77c875121523b768b292ca2f63527b4e88236cc3ec01c3	ELBA-2020-3933	ol7_aarch64_latest
	http-parser-2.7.1-8.el7.src.rpm	2003085eb0724f90bc77c875121523b768b292ca2f63527b4e88236cc3ec01c3	ELBA-2020-3933	ol7_aarch64_u7_base
	http-parser-2.7.1-8.el7.src.rpm	2003085eb0724f90bc77c875121523b768b292ca2f63527b4e88236cc3ec01c3	ELBA-2020-3933	ol7_aarch64_u8_base
	http-parser-2.7.1-8.el7.aarch64.rpm	49195b5c1e8f8d5b8ab312bed24ab020c28516554f1acdb8029c3a83bfc1366e	ELBA-2020-3933	ol7_aarch64_latest
	http-parser-2.7.1-8.el7.aarch64.rpm	49195b5c1e8f8d5b8ab312bed24ab020c28516554f1acdb8029c3a83bfc1366e	ELBA-2020-3933	ol7_aarch64_u7_base
	http-parser-2.7.1-8.el7.aarch64.rpm	49195b5c1e8f8d5b8ab312bed24ab020c28516554f1acdb8029c3a83bfc1366e	ELBA-2020-3933	ol7_aarch64_u8_base
	http-parser-devel-2.7.1-8.el7.aarch64.rpm	4c8b1decd584ac181352b81ddcd460b02b927a3b1b71c9e2aaaa1814d5e4ca34	ELBA-2020-3933	ol7_aarch64_optional_latest

Oracle Linux 7 (x86_64)	http-parser-2.7.1-8.el7.src.rpm	2003085eb0724f90bc77c875121523b768b292ca2f63527b4e88236cc3ec01c3	ELBA-2020-3933	ol7_x86_64_latest
	http-parser-2.7.1-8.el7.src.rpm	2003085eb0724f90bc77c875121523b768b292ca2f63527b4e88236cc3ec01c3	ELBA-2020-3933	ol7_x86_64_u7_base
	http-parser-2.7.1-8.el7.src.rpm	2003085eb0724f90bc77c875121523b768b292ca2f63527b4e88236cc3ec01c3	ELBA-2020-3933	ol7_x86_64_u8_base
	http-parser-2.7.1-8.el7.i686.rpm	aac75863d6c150da05930b74647390b0e10dd5a88f2869621b332bdbe6c53b3d	ELBA-2020-3933	ol7_x86_64_latest
	http-parser-2.7.1-8.el7.i686.rpm	aac75863d6c150da05930b74647390b0e10dd5a88f2869621b332bdbe6c53b3d	ELBA-2020-3933	ol7_x86_64_u7_base
	http-parser-2.7.1-8.el7.i686.rpm	aac75863d6c150da05930b74647390b0e10dd5a88f2869621b332bdbe6c53b3d	ELBA-2020-3933	ol7_x86_64_u8_base
	http-parser-2.7.1-8.el7.x86_64.rpm	b7c1c18ee2087cdf0d94f70dedecfcd046b772b1b2b19d25699920c60b93fe8f	ELBA-2020-3933	exadata_dbserver_19.2.10.0.0_x86_64_base
	http-parser-2.7.1-8.el7.x86_64.rpm	b7c1c18ee2087cdf0d94f70dedecfcd046b772b1b2b19d25699920c60b93fe8f	ELBA-2020-3933	exadata_dbserver_19.2.11.0.0_x86_64_base
	http-parser-2.7.1-8.el7.x86_64.rpm	b7c1c18ee2087cdf0d94f70dedecfcd046b772b1b2b19d25699920c60b93fe8f	ELBA-2020-3933	exadata_dbserver_19.2.8.0.0_x86_64_base
	http-parser-2.7.1-8.el7.x86_64.rpm	b7c1c18ee2087cdf0d94f70dedecfcd046b772b1b2b19d25699920c60b93fe8f	ELBA-2020-3933	exadata_dbserver_19.2.9.0.0_x86_64_base
	http-parser-2.7.1-8.el7.x86_64.rpm	b7c1c18ee2087cdf0d94f70dedecfcd046b772b1b2b19d25699920c60b93fe8f	ELBA-2020-3933	exadata_dbserver_19.3.0.0.0_x86_64_base
	http-parser-2.7.1-8.el7.x86_64.rpm	b7c1c18ee2087cdf0d94f70dedecfcd046b772b1b2b19d25699920c60b93fe8f	ELBA-2020-3933	exadata_dbserver_19.3.1.0.0_x86_64_base
	http-parser-2.7.1-8.el7.x86_64.rpm	b7c1c18ee2087cdf0d94f70dedecfcd046b772b1b2b19d25699920c60b93fe8f	ELBA-2020-3933	exadata_dbserver_19.3.2.0.0_x86_64_base
	http-parser-2.7.1-8.el7.x86_64.rpm	b7c1c18ee2087cdf0d94f70dedecfcd046b772b1b2b19d25699920c60b93fe8f	ELBA-2020-3933	exadata_dbserver_19.3.3.0.0_x86_64_base
	http-parser-2.7.1-8.el7.x86_64.rpm	b7c1c18ee2087cdf0d94f70dedecfcd046b772b1b2b19d25699920c60b93fe8f	ELBA-2020-3933	exadata_dbserver_19.3.4.0.0_x86_64_base
	http-parser-2.7.1-8.el7.x86_64.rpm	b7c1c18ee2087cdf0d94f70dedecfcd046b772b1b2b19d25699920c60b93fe8f	ELBA-2020-3933	exadata_dbserver_19.3.5.0.0_x86_64_base
	http-parser-2.7.1-8.el7.x86_64.rpm	b7c1c18ee2087cdf0d94f70dedecfcd046b772b1b2b19d25699920c60b93fe8f	ELBA-2020-3933	ol7_x86_64_latest
	http-parser-2.7.1-8.el7.x86_64.rpm	b7c1c18ee2087cdf0d94f70dedecfcd046b772b1b2b19d25699920c60b93fe8f	ELBA-2020-3933	ol7_x86_64_u7_base
	http-parser-2.7.1-8.el7.x86_64.rpm	b7c1c18ee2087cdf0d94f70dedecfcd046b772b1b2b19d25699920c60b93fe8f	ELBA-2020-3933	ol7_x86_64_u8_base
	http-parser-devel-2.7.1-8.el7.i686.rpm	47ec9e0a4daa99499839659c74ff4970cf66319dc50bf490c5330e486e8ea017	ELBA-2020-3933	ol7_x86_64_optional_latest
	http-parser-devel-2.7.1-8.el7.x86_64.rpm	d04456b6a234642c4788eb0eb7e50adb7dc9f4b00206f31520e7fca25f9005b4	ELBA-2020-3933	ol7_x86_64_optional_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691