ELSA-2024-1786

ELSA-2024-1786 - httpd:2.4/mod_http2 security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2024-04-11

Description

httpd
mod_http2
[1.15.7-8.5]
- Resolves: RHEL-29816 - httpd:2.4/mod_http2: httpd: CONTINUATION frames
DoS (CVE-2024-27316)

mod_md

Related CVEs

CVE-2024-27316

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label
Oracle Linux 8 (aarch64)	httpd-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.src.rpm	137f80a0bf68c8cf5b17b91f5b24a9a6	-	ol8_aarch64_appstream
	mod_http2-1.15.7-8.module+el8.9.0+90299+1db10a42.5.src.rpm	1a7c348ec576dffff8491c4ba4fa5ff4	-	ol8_aarch64_appstream
	mod_md-2.0.8-8.module+el8.9.0+90011+2f9c6a23.src.rpm	57baf2f70c9de0a1ab3a4a39fb97b4a0	-	ol8_aarch64_appstream
	httpd-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.aarch64.rpm	8c32f9ef57eea6ad3b006edcf1f68a4c	-	ol8_aarch64_appstream
	httpd-devel-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.aarch64.rpm	248c378773e4ed3da8b3995c54f6378b	-	ol8_aarch64_appstream
	httpd-filesystem-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.noarch.rpm	0af81c91ab93f260c231e25220086a82	-	ol8_aarch64_appstream
	httpd-manual-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.noarch.rpm	8738cbdc4489998e5822865896070966	-	ol8_aarch64_appstream
	httpd-tools-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.aarch64.rpm	65d465936e2b76fac41a8adc618c8c40	-	ol8_aarch64_appstream
	mod_http2-1.15.7-8.module+el8.9.0+90299+1db10a42.5.aarch64.rpm	bc4f8cfe0b8a6cf141ba552da44f1ca0	-	ol8_aarch64_appstream
	mod_ldap-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.aarch64.rpm	46ac07317d701a8b132a1f3ce190545b	-	ol8_aarch64_appstream
	mod_md-2.0.8-8.module+el8.9.0+90011+2f9c6a23.aarch64.rpm	e0cdd2c7bbe8ba7cf3614b973dd7eb66	-	ol8_aarch64_appstream
	mod_proxy_html-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.aarch64.rpm	51735d3a3dd811d1831a815c41609f0d	-	ol8_aarch64_appstream
	mod_session-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.aarch64.rpm	ce24978f7d35951840a458b8e9071ebe	-	ol8_aarch64_appstream
	mod_ssl-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.aarch64.rpm	52c1bb9135642de43cbda03e4dc44077	-	ol8_aarch64_appstream
Oracle Linux 8 (x86_64)	httpd-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.src.rpm	137f80a0bf68c8cf5b17b91f5b24a9a6	-	ol8_x86_64_appstream
	mod_http2-1.15.7-8.module+el8.9.0+90299+1db10a42.5.src.rpm	1a7c348ec576dffff8491c4ba4fa5ff4	-	ol8_x86_64_appstream
	mod_md-2.0.8-8.module+el8.9.0+90011+2f9c6a23.src.rpm	57baf2f70c9de0a1ab3a4a39fb97b4a0	-	ol8_x86_64_appstream
	httpd-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.x86_64.rpm	8e7ccd86d55bdf491894961a6e73f21b	-	ol8_x86_64_appstream
	httpd-devel-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.x86_64.rpm	c7393383b7937c8d3ee8c24531592325	-	ol8_x86_64_appstream
	httpd-filesystem-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.noarch.rpm	0af81c91ab93f260c231e25220086a82	-	ol8_x86_64_appstream
	httpd-manual-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.noarch.rpm	8738cbdc4489998e5822865896070966	-	ol8_x86_64_appstream
	httpd-tools-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.x86_64.rpm	f2db90e8c462b4e6589532ef72f72807	-	ol8_x86_64_appstream
	mod_http2-1.15.7-8.module+el8.9.0+90299+1db10a42.5.x86_64.rpm	647f47e41fff93d8fabfe8c84291ef04	-	ol8_x86_64_appstream
	mod_ldap-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.x86_64.rpm	34abbbc918e13ef3ec19758b9a05d0c4	-	ol8_x86_64_appstream
	mod_md-2.0.8-8.module+el8.9.0+90011+2f9c6a23.x86_64.rpm	50f77dc288425f1cdee5d05760c7dccb	-	ol8_x86_64_appstream
	mod_proxy_html-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.x86_64.rpm	4765ce57535bf86fd86a841008b16774	-	ol8_x86_64_appstream
	mod_session-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.x86_64.rpm	6ff918b3e560114f77f74c02edd8420b	-	ol8_x86_64_appstream
	mod_ssl-2.4.37-62.0.1.module+el8.9.0+90011+2f9c6a23.x86_64.rpm	62803bc7bfb920019ab5faae846754f3	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team