ELSA-2023-1593

ULN >
Oracle Linux Errata repository >
ELSA-2023-1593

ELSA-2023-1593 - httpd security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2023-04-05

Description

[2.4.6-98.0.3]
- mod_proxy: ap_proxy_http_request() to clear hop-by-hop first and
fixup last [CVE-2022-31813][Orabug: 34381850]
- mod_session: save one apr_strtok() [Orabug: 33338149][CVE-2021-26690]

[2.4.6-98.0.1]
- replace index.html with Oracle's index page oracle_index.html

[2.4.6-97.7]
- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
mod_rewrite and mod_proxy

Related CVEs

CVE-2023-25690

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 7 (aarch64)	httpd-2.4.6-98.0.3.el7_9.7.src.rpm	f632729a5bdad51f1b40686dd53cf4c1	-
	httpd-2.4.6-98.0.3.el7_9.7.aarch64.rpm	09c9bed7482cf1c486577cbb6a5221e1	-
	httpd-devel-2.4.6-98.0.3.el7_9.7.aarch64.rpm	743d47e0b2b24d68e2f7e6b64d88a9e5	-
	httpd-manual-2.4.6-98.0.3.el7_9.7.noarch.rpm	bdf64fd4ed93c89c027db6073219253c	-
	httpd-tools-2.4.6-98.0.3.el7_9.7.aarch64.rpm	3bfde955e3801c07e6aac04e5dedf90e	-
	mod_ldap-2.4.6-98.0.3.el7_9.7.aarch64.rpm	64cc7cb56e7a89637efc558fa2f5ffcd	-
	mod_proxy_html-2.4.6-98.0.3.el7_9.7.aarch64.rpm	f1996d8379b4aa282e51a06a61c8455c	-
	mod_session-2.4.6-98.0.3.el7_9.7.aarch64.rpm	803cbc9d1eacc281f6064e16fe5e99cd	-
	mod_ssl-2.4.6-98.0.3.el7_9.7.aarch64.rpm	9a617ced0c2b274a72973e277e624ef8	-

Oracle Linux 7 (x86_64)	httpd-2.4.6-98.0.3.el7_9.7.src.rpm	f632729a5bdad51f1b40686dd53cf4c1	-
	httpd-2.4.6-98.0.3.el7_9.7.x86_64.rpm	2352d65566a6ec2506fcaf3a584e48a4	-
	httpd-devel-2.4.6-98.0.3.el7_9.7.x86_64.rpm	a954c501fc84e9d973eabb94ea90b05c	-
	httpd-manual-2.4.6-98.0.3.el7_9.7.noarch.rpm	bdf64fd4ed93c89c027db6073219253c	-
	httpd-tools-2.4.6-98.0.3.el7_9.7.x86_64.rpm	fe76e84798742ffc9b044eb3f3f2cc29	-
	mod_ldap-2.4.6-98.0.3.el7_9.7.x86_64.rpm	fc066894e04ce4cf6a01f2ac0a0ca8e1	-
	mod_proxy_html-2.4.6-98.0.3.el7_9.7.x86_64.rpm	fa315f1c7a7bbec7680c4eaf0955f70d	-
	mod_session-2.4.6-98.0.3.el7_9.7.x86_64.rpm	2bf7f029c022187069bcdc2c98d46460	-
	mod_ssl-2.4.6-98.0.3.el7_9.7.x86_64.rpm	72fe9338b9cd8c5497f66e87c91270a1	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691