ELSA-2021-9619

ELSA-2021-9619 - httpd security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2021-12-16

Description


[2.4.6-97.0.5.2]
- scoreboard: fix null pointer deference [Orabug: 33561206][CVE-2021-34798]
- fix ap_escape_quote logic [Orabug: 33617690][CVE-2021-39275]


Related CVEs


CVE-2021-34798
CVE-2021-39275

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) httpd-2.4.6-97.0.5.el7_9.2.src.rpm1b2e3597231a072a65de84c796a49fe9-
httpd-2.4.6-97.0.5.el7_9.2.aarch64.rpmcf9e56ca84548062d3746a4487401399-
httpd-devel-2.4.6-97.0.5.el7_9.2.aarch64.rpm9325425dd90183c7898c79d1f7f9abd9-
httpd-manual-2.4.6-97.0.5.el7_9.2.noarch.rpm9d0cfab7f8cb369095f3924098439a58-
httpd-tools-2.4.6-97.0.5.el7_9.2.aarch64.rpm6e58a0e316c2691bacf7cb62ab7eb94a-
mod_ldap-2.4.6-97.0.5.el7_9.2.aarch64.rpm2033d9e6aa0e78762066b32733960996-
mod_proxy_html-2.4.6-97.0.5.el7_9.2.aarch64.rpmbfe11e709836174813d661b3f70df657-
mod_session-2.4.6-97.0.5.el7_9.2.aarch64.rpmacab120fb9c2d520ca13288c4e83276b-
mod_ssl-2.4.6-97.0.5.el7_9.2.aarch64.rpm9c047606520eaad791610ebf0a6847de-
Oracle Linux 7 (x86_64) httpd-2.4.6-97.0.5.el7_9.2.src.rpm1b2e3597231a072a65de84c796a49fe9-
httpd-2.4.6-97.0.5.el7_9.2.x86_64.rpm27dcd5356db6eb179c0aeb4a6de64e10-
httpd-devel-2.4.6-97.0.5.el7_9.2.x86_64.rpmbb5de687275414ba2e91af93e8166778-
httpd-manual-2.4.6-97.0.5.el7_9.2.noarch.rpm9d0cfab7f8cb369095f3924098439a58-
httpd-tools-2.4.6-97.0.5.el7_9.2.x86_64.rpmc3721a3be07d93801ab7c34f643c8fb0-
mod_ldap-2.4.6-97.0.5.el7_9.2.x86_64.rpm78e9bce3e7f5651e77397b114aca3061-
mod_proxy_html-2.4.6-97.0.5.el7_9.2.x86_64.rpme72839a645beeaf06a66ecca875a81db-
mod_session-2.4.6-97.0.5.el7_9.2.x86_64.rpm4d3333699ffddeb9681ddec39b32b948-
mod_ssl-2.4.6-97.0.5.el7_9.2.x86_64.rpm3f14bea8a40a74331690b8c438bb641f-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete