ELBA-2018-1891

ELBA-2018-1891 - httpd bug fix update

Type:BUG
Severity:NA
Release Date:2018-06-25

Description


[2.2.15-69.0.1]
- replace index.html with Oracles index page oracle_index.html
- update vstring in specfile

[2.2.15-69]
- Resolves: #1471383 - httpd.worker abort()s with misc/apr_reslist.c:159:
reslist_cleanup: Assertion rl->ntotal == 0 failed

[2.2.15-68]
- Resolves: #1450298 - when ProxyErrorOverride is On, modcluster
return 503 status code on subsequent requests (2)

[2.2.15-67]
- Resolves: #1493060 - CVE-2017-9798 httpd: various flaws

[2.2.15-66]
- Resolves: #1463194 - CVE-2017-3167 httpd: ap_get_basic_auth_pw()
authentication bypass
- Resolves: #1463197 - CVE-2017-3169 httpd: mod_ssl NULL pointer dereference
- Resolves: #1463207 - CVE-2017-7679 httpd: mod_mime buffer overread
- Resolves: #1470748 - CVE-2017-9788 httpd: Uninitialized memory reflection
in mod_auth_digest

[2.2.15-65]
- Related: #1412974 - CVE-2016-8743 httpd: Apache HTTP Request Parsing
Whitespace Defects

[2.2.15-64]
- Resolves: #1463205 - CVE-2017-7668 httpd: ap_find_token() buffer overread

[2.2.15-63]
- Related: #1456324 - segfault in ap_proxy_set_scoreboard_lb

[2.2.15-62]
- Resolves: #1456324 - segfault in ap_proxy_set_scoreboard_lb

[2.2.15-61]
- Resolves: #1412974 - CVE-2016-8743 httpd: Apache HTTP Request Parsing
Whitespace Defects




Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete