ELSA-2026-36187

ELSA-2026-36187 - perl-HTTP-Daemon security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2026-07-07

Description


[6.12-6.1]
- Fix CVE-2026-8450: send_file() shell-magic injection via 2-arg open()
- Resolves: RHEL-184829


Related CVEs


CVE-2026-8450

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 9 (aarch64) perl-HTTP-Daemon-6.12-6.el9_8.1.src.rpmdd577a8e552c6e132e6ffcb84a24f891ef265d54931842b1f921f4aa3cf7718e-ol9_aarch64_codeready_builder
perl-HTTP-Daemon-6.12-6.el9_8.1.noarch.rpm32372cfd4d719ab8d352fbcf73bd62eb1344f5dad8f71aa549bdbb6dada57ba0-ol9_aarch64_codeready_builder
Oracle Linux 9 (x86_64) perl-HTTP-Daemon-6.12-6.el9_8.1.src.rpmdd577a8e552c6e132e6ffcb84a24f891ef265d54931842b1f921f4aa3cf7718e-ol9_x86_64_codeready_builder
perl-HTTP-Daemon-6.12-6.el9_8.1.noarch.rpm32372cfd4d719ab8d352fbcf73bd62eb1344f5dad8f71aa549bdbb6dada57ba0-ol9_x86_64_codeready_builder



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete