ELSA-2022-1049

ULN >
Oracle Linux Errata repository >
ELSA-2022-1049

ELSA-2022-1049 - httpd:2.4 security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2022-03-25

Description

httpd
[2.4.37-43.0.2.3]
- Set vstring per ORACLE_SUPPORT_PRODUCT [Orabug: 29892262]
- Replace index.html with Oracle's index page oracle_index.html

[2.4.37-43.3]
- Resolves: #2065247 - CVE-2022-22720 httpd:2.4/httpd: HTTP request smuggling
vulnerability in Apache HTTP Server 2.4.52 and earlier

Related CVEs

CVE-2022-22720

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 8 (aarch64)	httpd-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.src.rpm	1e047a4bae9fa61412cb8f84294dca80	-
	mod_http2-1.15.7-3.module+el8.4.0+20024+b87b2deb.src.rpm	e320fdccb7dc34b2dc9965af2f24d07b	-
	mod_md-2.0.8-8.module+el8.5.0+20475+4f6a8fd5.src.rpm	d4bbe6c1fcdd8f809bd286308de3a0bc	-
	httpd-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.aarch64.rpm	f94ef84f10c8360006b065b9fa0fe274	-
	httpd-devel-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.aarch64.rpm	242e6bfaaf094ca9d0111572d89af87a	-
	httpd-filesystem-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.noarch.rpm	0d14d85e20ee28035f2aed75c490aa88	-
	httpd-manual-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.noarch.rpm	3af4b5dedad31538c327757d23ed531e	-
	httpd-tools-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.aarch64.rpm	0427125d062d266391083addb2c992e1	-
	mod_http2-1.15.7-3.module+el8.4.0+20024+b87b2deb.aarch64.rpm	c96f1ce00150115f21de9ae2b1292791	-
	mod_ldap-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.aarch64.rpm	7315135334273ec52174c366449da4b6	-
	mod_md-2.0.8-8.module+el8.5.0+20475+4f6a8fd5.aarch64.rpm	b349fe48e242e2c2ae5af10a13664a88	-
	mod_proxy_html-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.aarch64.rpm	931691b96b88e9748e841f014f971fcd	-
	mod_session-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.aarch64.rpm	94f29dd544d93ee587d71cd9d4e69b28	-
	mod_ssl-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.aarch64.rpm	b3fab01ffc1f1cad440606841fefb94a	-

Oracle Linux 8 (x86_64)	httpd-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.src.rpm	1e047a4bae9fa61412cb8f84294dca80	-
	mod_http2-1.15.7-3.module+el8.4.0+20024+b87b2deb.src.rpm	e320fdccb7dc34b2dc9965af2f24d07b	-
	mod_md-2.0.8-8.module+el8.5.0+20475+4f6a8fd5.src.rpm	d4bbe6c1fcdd8f809bd286308de3a0bc	-
	httpd-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.x86_64.rpm	9aab3c569da902360380936d6abf3b05	-
	httpd-devel-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.x86_64.rpm	a9f69d9ea2dc91f537ffa23ec9e01dab	-
	httpd-filesystem-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.noarch.rpm	0d14d85e20ee28035f2aed75c490aa88	-
	httpd-manual-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.noarch.rpm	3af4b5dedad31538c327757d23ed531e	-
	httpd-tools-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.x86_64.rpm	55c0601fa9df691ccc17f57837fb6473	-
	mod_http2-1.15.7-3.module+el8.4.0+20024+b87b2deb.x86_64.rpm	63cf91b96c95af5dcba2af37b59ba747	-
	mod_ldap-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.x86_64.rpm	40f9cbcddf80618d040ca676021e4db2	-
	mod_md-2.0.8-8.module+el8.5.0+20475+4f6a8fd5.x86_64.rpm	909f339e1848be0fc4ffe01e7edd7ccc	-
	mod_proxy_html-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.x86_64.rpm	ca6988b924fc2ea57835102b035a2e51	-
	mod_session-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.x86_64.rpm	2ff6835be1757397ce4436b208119b64	-
	mod_ssl-2.4.37-43.0.2.module+el8.5.0+20524+6e75a975.3.x86_64.rpm	60b26365b9c62eb3150ab54d0b608393	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691