ELSA-2020-3714

ULN >
Oracle Linux Errata repository >
ELSA-2020-3714

ELSA-2020-3714 - httpd:2.4 security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2020-09-11

Description

mod_http2
[1.11.3-3.1]
- Resolves: #1869072 - CVE-2020-9490 httpd:2.4/mod_http2: httpd: Push diary
crash on specifically crafted HTTP/2 header

Related CVEs

CVE-2020-9490

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	httpd-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.src.rpm	67337ee759f24c8e50bd6ea18e39d33afe42fc41bd5f07b91fceafa9be9e8d0e	-	ol8_aarch64_appstream
	mod_http2-1.11.3-3.module+el8.2.0+7789+dac765eb.1.src.rpm	3daffa27965a02823cd8091826a35751c9ce571a379a6a2f2b69ee05df843aac	-	ol8_aarch64_appstream
	mod_md-2.0.8-7.module+el8.2.0+5576+c083ffcb.src.rpm	6d8d00614f22ab1f1e9b5a875edf498cc5bfe2353e8be2535955dc9a547eb5b3	-	ol8_aarch64_appstream
	httpd-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.aarch64.rpm	010c80c60f17f13c95a116359b5f6de2b003e285e05db820df1d87f95f9f2dc3	-	ol8_aarch64_appstream
	httpd-devel-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.aarch64.rpm	10d8804154246d43fee090b0db988bee147606f568eca336c26db3d32948ac11	-	ol8_aarch64_appstream
	httpd-filesystem-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.noarch.rpm	365683710c0dbfcdf4759707662a097d4a6ed44a428f55833dd4be45a7239a69	-	ol8_aarch64_appstream
	httpd-manual-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.noarch.rpm	1e098ae7335bdff719ba959f83f2ce150727f8a1771fda575032acdb3cc2fd0d	-	ol8_aarch64_appstream
	httpd-tools-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.aarch64.rpm	437f625ee5120e176b20c5fda4b2af54f4497212f8060d5a653e6f9ae20448a0	-	ol8_aarch64_appstream
	mod_http2-1.11.3-3.module+el8.2.0+7789+dac765eb.1.aarch64.rpm	89ee30602bfbaf7bfc5b34e247b2150070bf3fb750010af49625b2482348a3f9	-	ol8_aarch64_appstream
	mod_ldap-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.aarch64.rpm	3e81c2bffebddc99b84c46f01ae8b2c81769b213170b2f3594430c7bb7b6e579	-	ol8_aarch64_appstream
	mod_md-2.0.8-7.module+el8.2.0+5576+c083ffcb.aarch64.rpm	bfa13d04707ba3af3bc59eba7242f2511721b83e89752e30440d9174175e0290	-	ol8_aarch64_appstream
	mod_proxy_html-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.aarch64.rpm	8061cbcb94c1f551c80f8dabd0c2df71d45d3f105f2712622147d0e26cdb5e14	-	ol8_aarch64_appstream
	mod_session-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.aarch64.rpm	a329e00164b62f4e7183d7b48d5d184e86369834a8e642818664327d5238042a	-	ol8_aarch64_appstream
	mod_ssl-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.aarch64.rpm	350201c9d6ee5da3eda67dff065df39ff575680108ecc5e033cca55ed393fe3c	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	httpd-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.src.rpm	67337ee759f24c8e50bd6ea18e39d33afe42fc41bd5f07b91fceafa9be9e8d0e	-	ol8_x86_64_appstream
	mod_http2-1.11.3-3.module+el8.2.0+7789+dac765eb.1.src.rpm	3daffa27965a02823cd8091826a35751c9ce571a379a6a2f2b69ee05df843aac	-	ol8_x86_64_appstream
	mod_md-2.0.8-7.module+el8.2.0+5576+c083ffcb.src.rpm	6d8d00614f22ab1f1e9b5a875edf498cc5bfe2353e8be2535955dc9a547eb5b3	-	ol8_x86_64_appstream
	httpd-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.x86_64.rpm	1c61f0e47de2cf575efe96e99170cb3621565fcf01bb6477673f87d1ac762108	-	ol8_x86_64_appstream
	httpd-devel-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.x86_64.rpm	7e2512dd148adae23bbfcea0dd3c972986a04a1ff739d007e8dfe8e2911a9a8e	-	ol8_x86_64_appstream
	httpd-filesystem-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.noarch.rpm	365683710c0dbfcdf4759707662a097d4a6ed44a428f55833dd4be45a7239a69	-	ol8_x86_64_appstream
	httpd-manual-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.noarch.rpm	1e098ae7335bdff719ba959f83f2ce150727f8a1771fda575032acdb3cc2fd0d	-	ol8_x86_64_appstream
	httpd-tools-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.x86_64.rpm	45d5ce623ee72e59f76124df6f681aa7b38adadbadefd026f623e41d9d364678	-	ol8_x86_64_appstream
	mod_http2-1.11.3-3.module+el8.2.0+7789+dac765eb.1.x86_64.rpm	190c845f5e127b2d74a792a3477aec94c446caf24b33b7606f453dcb2c4d5168	-	ol8_x86_64_appstream
	mod_ldap-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.x86_64.rpm	d579c1a917315536f33dc56ac9050daa7fc79734443214bc7bf3025c2e7d9c85	-	ol8_x86_64_appstream
	mod_md-2.0.8-7.module+el8.2.0+5576+c083ffcb.x86_64.rpm	1d25d0d70ffbf49af5cbe3b874f4d449e908290540e0300ca6d5d920cc983565	-	ol8_x86_64_appstream
	mod_proxy_html-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.x86_64.rpm	f87c0e0a8d0a05f21228994657275905f28bfd7d998ef460e01f74227bd2a286	-	ol8_x86_64_appstream
	mod_session-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.x86_64.rpm	0bb6650cd097358e67a513d3541f6cc014db166488979aa5c638632daacdd104	-	ol8_x86_64_appstream
	mod_ssl-2.4.37-21.0.1.module+el8.2.0+5576+c083ffcb.x86_64.rpm	002d957aa36893b6441cb1e85883837c40a04c36c0fc7f3fde313dcabeca66b6	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691