Stay Connected:

ELSA-2020-0703

ELSA-2020-0703 - http-parser security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2020-03-06

Description


[2.7.1-8.2]
- Do not break ABI with CVE-2019-15605 fix

[2.7.1-8.1]
- Resolves: CVE-2019-15605 http-parser: nodejs: HTTP request
smuggling using malformed Transfer-Encoding header


Related CVEs


CVE-2019-15605

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) http-parser-2.7.1-8.el7_7.2.src.rpme3f61f255eec1e0a6683419902ef714fELBA-2020-3933
http-parser-2.7.1-8.el7_7.2.aarch64.rpm48551871e28916ff08c8aa7e67900c7fELBA-2020-3933
http-parser-devel-2.7.1-8.el7_7.2.aarch64.rpm538d35d418f5b296380e7306965bef00ELBA-2020-3933
Oracle Linux 7 (x86_64) http-parser-2.7.1-8.el7_7.2.src.rpme3f61f255eec1e0a6683419902ef714fELBA-2020-3933
http-parser-2.7.1-8.el7_7.2.i686.rpm09df22d83cc87e45a2f7d73d685367e6ELBA-2020-3933
http-parser-2.7.1-8.el7_7.2.x86_64.rpm95eaa7964e4207a370bd6f712e7e03d5ELBA-2020-3933
http-parser-devel-2.7.1-8.el7_7.2.i686.rpm87fdbdd09083efbfc3ec80d19ac85c4eELBA-2020-3933
http-parser-devel-2.7.1-8.el7_7.2.x86_64.rpm8175df72cb6443e7c90f539c5acfd564ELBA-2020-3933



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights