ELSA-2022-0143

ULN >
Oracle Linux Errata repository >
ELSA-2022-0143

ELSA-2022-0143 - httpd security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2022-01-18

Description

[2.4.6-97.0.5.4]
- mod_session: save one apr_strtok() [Orabug: 33338149][CVE-2021-26690]
- replace index.html with Oracle's index page oracle_index.html

[2.4.6-97.4]
- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session

[2.4.6-97.3]
- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
when parsing multipart content

Related CVEs

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 7 (aarch64)	httpd-2.4.6-97.0.5.el7_9.4.src.rpm	7c2a396fa249428e39c6b81e0fb4befb	-
	httpd-2.4.6-97.0.5.el7_9.4.aarch64.rpm	121b3a18b60c6f8678455fd7c995435b	-
	httpd-devel-2.4.6-97.0.5.el7_9.4.aarch64.rpm	8ad6191efd67874ab9be0d95cdbfcabf	-
	httpd-manual-2.4.6-97.0.5.el7_9.4.noarch.rpm	bd2e9f9421dbf336ed1ac715f577c7b2	-
	httpd-tools-2.4.6-97.0.5.el7_9.4.aarch64.rpm	027840228e17373bf6ed97f0fe068206	-
	mod_ldap-2.4.6-97.0.5.el7_9.4.aarch64.rpm	4b6df6678b5d4207187e0df4e73fd6e9	-
	mod_proxy_html-2.4.6-97.0.5.el7_9.4.aarch64.rpm	5ab652f595586d002e5b9965abdf14cd	-
	mod_session-2.4.6-97.0.5.el7_9.4.aarch64.rpm	6016533bdabe21a9228f9da80c3a5705	-
	mod_ssl-2.4.6-97.0.5.el7_9.4.aarch64.rpm	c1697b055317dc2d92109c22cc0c4554	-

Oracle Linux 7 (x86_64)	httpd-2.4.6-97.0.5.el7_9.4.src.rpm	7c2a396fa249428e39c6b81e0fb4befb	-
	httpd-2.4.6-97.0.5.el7_9.4.x86_64.rpm	414a8bff84a7209d48bd7e1e1431295a	-
	httpd-devel-2.4.6-97.0.5.el7_9.4.x86_64.rpm	ec43a60ee5f657c2d4923257e2103127	-
	httpd-manual-2.4.6-97.0.5.el7_9.4.noarch.rpm	bd2e9f9421dbf336ed1ac715f577c7b2	-
	httpd-tools-2.4.6-97.0.5.el7_9.4.x86_64.rpm	6b23fab02da49a13c94a4539dbe925fc	-
	mod_ldap-2.4.6-97.0.5.el7_9.4.x86_64.rpm	8e0d82565f6fc09927e539a7a67e8421	-
	mod_proxy_html-2.4.6-97.0.5.el7_9.4.x86_64.rpm	5e0dec7c39a6d1d04be5bf56858dc7e3	-
	mod_session-2.4.6-97.0.5.el7_9.4.x86_64.rpm	e5a1e37e3ccbc748f52b3738ce36e24e	-
	mod_ssl-2.4.6-97.0.5.el7_9.4.x86_64.rpm	5d7dae773ad1b6a452de431853a23d79	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691