ELSA-2015-1249

ULN >
Oracle Linux Errata repository >
ELSA-2015-1249

ELSA-2015-1249 - httpd security, bug fix, and enhancement update

Type:	SECURITY
Impact:	LOW
Release Date:	2015-07-28

Description

[2.2.15-45.0.1]
- replace index.html with Oracle's index page oracle_index.html
- update vstring in specfile

[2.2.15-45]
- mod_proxy_balancer: add support for 'drain mode' (N) (#767130)

[2.2.15-44]
- set SSLCipherSuite to DEFAULT:!EXP:!SSLv2:!DES:!IDEA:!SEED:+3DES (#1086771)

[2.2.15-43]
- revert DirectoryMatch patch from 2.2.15-40 (#1016963)

[2.2.15-42]
- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704)

[2.2.15-41]
- fix compilation with older OpenSSL caused by misspelling in patch (#1162268)

[2.2.15-40]
- mod_proxy: do not mix workers shared memory during graceful restart (#1149906)
- mod_ssl: Fix SSL_CLIENT_VERIFY value when optional_no_ca and SSLSessionCache
are used and SSL session is resumed (#1149703)
- mod_ssl: log revoked certificates at the INFO level (#1161328)
- mod_ssl: use -extensions v3_req for certificate generation (#906476)
- core: check the config file before restarting the server (#1146194)
- core: do not match files when using DirectoryMatch (#1016963)
- core: improve error message for inaccessible DocumentRoot (#987590)
- rotatelogs: improve support for localtime (#922844)
- mod_deflate: fix decompression of files larger than 4GB (#1057695)
- ab: fix integer overflow when printing stats with lot of requests (#1092419)
- ab: try all addresses instead of failing on first one when not available (#1125269)
- ab: fix read failure when targeting SSL server (#1045477)
- apachectl: support HTTPD_LANG variable from /etc/sysconfig/httpd (#963146)
- do not display 'bomb' icon for files ending with 'core' (#1069625)

Related CVEs

CVE-2013-5704

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 6 (i386)	httpd-2.2.15-45.0.1.el6.src.rpm	92e6c110adbad68eeccffd231e48c13cdd95f4cae097ec0d68252a983fcaa095	ELSA-2022-9714	ol6_i386_latest_archive
	httpd-2.2.15-45.0.1.el6.src.rpm	92e6c110adbad68eeccffd231e48c13cdd95f4cae097ec0d68252a983fcaa095	ELSA-2022-9714	ol6_u7_i386_base
	httpd-2.2.15-45.0.1.el6.i686.rpm	140694bc79c28effe7d050fd23bb35ecce54c53f284a28c0b76ebcc0a7484d03	ELSA-2022-9714	ol6_i386_latest_archive
	httpd-2.2.15-45.0.1.el6.i686.rpm	140694bc79c28effe7d050fd23bb35ecce54c53f284a28c0b76ebcc0a7484d03	ELSA-2022-9714	ol6_u7_i386_base
	httpd-devel-2.2.15-45.0.1.el6.i686.rpm	43340ca5bc700fb05e6f13ebd1293278468c0433de0c0b4bba4578fbc3d8833a	ELSA-2022-9714	ol6_i386_latest_archive
	httpd-devel-2.2.15-45.0.1.el6.i686.rpm	43340ca5bc700fb05e6f13ebd1293278468c0433de0c0b4bba4578fbc3d8833a	ELSA-2022-9714	ol6_u7_i386_base
	httpd-manual-2.2.15-45.0.1.el6.noarch.rpm	6fa0f1ec92ec55366901905f766c44fefc5a2dc74ed146eedb64a7cf04a9e401	ELSA-2022-9714	ol6_i386_latest_archive
	httpd-manual-2.2.15-45.0.1.el6.noarch.rpm	6fa0f1ec92ec55366901905f766c44fefc5a2dc74ed146eedb64a7cf04a9e401	ELSA-2022-9714	ol6_u7_i386_base
	httpd-tools-2.2.15-45.0.1.el6.i686.rpm	3b1fc69bd70870ece1558cd09c51f51494448c924db9fe3061fdbd328f095b33	ELSA-2022-9714	ol6_i386_latest_archive
	httpd-tools-2.2.15-45.0.1.el6.i686.rpm	3b1fc69bd70870ece1558cd09c51f51494448c924db9fe3061fdbd328f095b33	ELSA-2022-9714	ol6_u7_i386_base
	mod_ssl-2.2.15-45.0.1.el6.i686.rpm	00186120751c94b7fb34fd762fcc880bdc781d33c902f67c37e0f247c8b63dda	ELSA-2022-9714	ol6_i386_latest_archive
	mod_ssl-2.2.15-45.0.1.el6.i686.rpm	00186120751c94b7fb34fd762fcc880bdc781d33c902f67c37e0f247c8b63dda	ELSA-2022-9714	ol6_u7_i386_base

Oracle Linux 6 (x86_64)	httpd-2.2.15-45.0.1.el6.src.rpm	92e6c110adbad68eeccffd231e48c13cdd95f4cae097ec0d68252a983fcaa095	ELSA-2022-9714	ol6_u7_x86_64_base
	httpd-2.2.15-45.0.1.el6.src.rpm	92e6c110adbad68eeccffd231e48c13cdd95f4cae097ec0d68252a983fcaa095	ELSA-2022-9714	ol6_x86_64_latest_archive
	httpd-2.2.15-45.0.1.el6.x86_64.rpm	bb872beab5b78dc4bc2944e525627c8f1af5c5b4b2f4cbce7ac8f644883d80bf	ELSA-2022-9714	ol6_u7_x86_64_base
	httpd-2.2.15-45.0.1.el6.x86_64.rpm	bb872beab5b78dc4bc2944e525627c8f1af5c5b4b2f4cbce7ac8f644883d80bf	ELSA-2022-9714	ol6_x86_64_latest_archive
	httpd-devel-2.2.15-45.0.1.el6.i686.rpm	43340ca5bc700fb05e6f13ebd1293278468c0433de0c0b4bba4578fbc3d8833a	ELSA-2022-9714	ol6_u7_x86_64_base
	httpd-devel-2.2.15-45.0.1.el6.i686.rpm	43340ca5bc700fb05e6f13ebd1293278468c0433de0c0b4bba4578fbc3d8833a	ELSA-2022-9714	ol6_x86_64_latest_archive
	httpd-devel-2.2.15-45.0.1.el6.x86_64.rpm	e898921b213097fe95ad8c47587d95de14d23e08c12f564871bfc4ccfdf9d660	ELSA-2022-9714	ol6_u7_x86_64_base
	httpd-devel-2.2.15-45.0.1.el6.x86_64.rpm	e898921b213097fe95ad8c47587d95de14d23e08c12f564871bfc4ccfdf9d660	ELSA-2022-9714	ol6_x86_64_latest_archive
	httpd-manual-2.2.15-45.0.1.el6.noarch.rpm	6fa0f1ec92ec55366901905f766c44fefc5a2dc74ed146eedb64a7cf04a9e401	ELSA-2022-9714	ol6_u7_x86_64_base
	httpd-manual-2.2.15-45.0.1.el6.noarch.rpm	6fa0f1ec92ec55366901905f766c44fefc5a2dc74ed146eedb64a7cf04a9e401	ELSA-2022-9714	ol6_x86_64_latest_archive
	httpd-tools-2.2.15-45.0.1.el6.x86_64.rpm	66e59d8e80e5619c656562a4195c291697388626f5f1c03ea237c5e164b08e70	ELSA-2022-9714	ol6_u7_x86_64_base
	httpd-tools-2.2.15-45.0.1.el6.x86_64.rpm	66e59d8e80e5619c656562a4195c291697388626f5f1c03ea237c5e164b08e70	ELSA-2022-9714	ol6_x86_64_latest_archive
	mod_ssl-2.2.15-45.0.1.el6.x86_64.rpm	a8a762a26fa15f7d6e7c2dab1ac8b3d4a4acdb8444a09d37cae5981ee74ff008	ELSA-2022-9714	ol6_u7_x86_64_base
	mod_ssl-2.2.15-45.0.1.el6.x86_64.rpm	a8a762a26fa15f7d6e7c2dab1ac8b3d4a4acdb8444a09d37cae5981ee74ff008	ELSA-2022-9714	ol6_x86_64_latest_archive

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691