ELSA-2024-4943

ULN >
Oracle Linux Errata repository >
ELSA-2024-4943

ELSA-2024-4943 - httpd security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2024-09-13

Description

[2.4.6-99.0.3.1]
- Opt-ins for unsafe prefix_stat and %3f [Orabug: 36904263][CVE-2024-38474][CVE-2024-38475]
- mod_proxy: validate hostname [Orabug: 36904263][CVE-2024-38477]

Related CVEs

CVE-2024-38477

CVE-2024-38475

CVE-2024-38474

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	httpd-2.4.6-99.0.3.el7_9.1.src.rpm	fc4fa85075ca4e6ad25c1355086054ec56d126b4cabd0be9a10e02483ec256ee	ELSA-2024-7101	ol7_aarch64_latest
	httpd-2.4.6-99.0.3.el7_9.1.src.rpm	fc4fa85075ca4e6ad25c1355086054ec56d126b4cabd0be9a10e02483ec256ee	ELSA-2024-7101	ol7_aarch64_optional_latest
	httpd-2.4.6-99.0.3.el7_9.1.src.rpm	fc4fa85075ca4e6ad25c1355086054ec56d126b4cabd0be9a10e02483ec256ee	ELSA-2024-7101	ol7_aarch64_u9_patch
	httpd-2.4.6-99.0.3.el7_9.1.aarch64.rpm	c6b865cc1a566c4014e96465424f93955933d772ef9b5f5a5d637d0339157237	ELSA-2024-7101	ol7_aarch64_latest
	httpd-2.4.6-99.0.3.el7_9.1.aarch64.rpm	c6b865cc1a566c4014e96465424f93955933d772ef9b5f5a5d637d0339157237	ELSA-2024-7101	ol7_aarch64_u9_patch
	httpd-devel-2.4.6-99.0.3.el7_9.1.aarch64.rpm	da1ea39da013eb94d0f83137a6a1ac57203206ed92fb2c2efe80e8d4057e50d6	ELSA-2024-7101	ol7_aarch64_latest
	httpd-devel-2.4.6-99.0.3.el7_9.1.aarch64.rpm	da1ea39da013eb94d0f83137a6a1ac57203206ed92fb2c2efe80e8d4057e50d6	ELSA-2024-7101	ol7_aarch64_u9_patch
	httpd-manual-2.4.6-99.0.3.el7_9.1.noarch.rpm	9516bfcc8a54f173de1081b571b58cf7661ebf8a7a7f43d54493dcd2cc6735f6	ELSA-2024-7101	ol7_aarch64_latest
	httpd-manual-2.4.6-99.0.3.el7_9.1.noarch.rpm	9516bfcc8a54f173de1081b571b58cf7661ebf8a7a7f43d54493dcd2cc6735f6	ELSA-2024-7101	ol7_aarch64_u9_patch
	httpd-tools-2.4.6-99.0.3.el7_9.1.aarch64.rpm	ae29371fad9168b490410f2f49621064ccd4a7093440dd9ab86d2762607dae97	ELSA-2024-7101	ol7_aarch64_latest
	httpd-tools-2.4.6-99.0.3.el7_9.1.aarch64.rpm	ae29371fad9168b490410f2f49621064ccd4a7093440dd9ab86d2762607dae97	ELSA-2024-7101	ol7_aarch64_u9_patch
	mod_ldap-2.4.6-99.0.3.el7_9.1.aarch64.rpm	7bb28f7231d1cbac1e35b3163e88b4f5d34cc208e37780466c0107190836ffca	ELSA-2024-7101	ol7_aarch64_optional_latest
	mod_proxy_html-2.4.6-99.0.3.el7_9.1.aarch64.rpm	d1bbe00bc2d045b48a3a8a3fcfe47fbdc3b5c34a7207131a3b9ce55c83c3ea03	ELSA-2024-7101	ol7_aarch64_optional_latest
	mod_session-2.4.6-99.0.3.el7_9.1.aarch64.rpm	1b2882014424490cd84980897efa333abf258cacc1bd7c392861489ca129ea11	ELSA-2024-7101	ol7_aarch64_latest
	mod_session-2.4.6-99.0.3.el7_9.1.aarch64.rpm	1b2882014424490cd84980897efa333abf258cacc1bd7c392861489ca129ea11	ELSA-2024-7101	ol7_aarch64_u9_patch
	mod_ssl-2.4.6-99.0.3.el7_9.1.aarch64.rpm	eae36304892b858e662cf5fe2fff95e15874948ecca1ac70dcdc425949d42176	ELSA-2024-7101	ol7_aarch64_latest
	mod_ssl-2.4.6-99.0.3.el7_9.1.aarch64.rpm	eae36304892b858e662cf5fe2fff95e15874948ecca1ac70dcdc425949d42176	ELSA-2024-7101	ol7_aarch64_u9_patch

Oracle Linux 7 (x86_64)	httpd-2.4.6-99.0.3.el7_9.1.src.rpm	fc4fa85075ca4e6ad25c1355086054ec56d126b4cabd0be9a10e02483ec256ee	ELSA-2024-7101	ol7_x86_64_latest
	httpd-2.4.6-99.0.3.el7_9.1.src.rpm	fc4fa85075ca4e6ad25c1355086054ec56d126b4cabd0be9a10e02483ec256ee	ELSA-2024-7101	ol7_x86_64_optional_latest
	httpd-2.4.6-99.0.3.el7_9.1.src.rpm	fc4fa85075ca4e6ad25c1355086054ec56d126b4cabd0be9a10e02483ec256ee	ELSA-2024-7101	ol7_x86_64_u9_patch
	httpd-2.4.6-99.0.3.el7_9.1.x86_64.rpm	e53c7e869b03111fbe5139a51ebb20a34c45972425c29b938128263d3e605eb2	ELSA-2024-7101	ol7_x86_64_latest
	httpd-2.4.6-99.0.3.el7_9.1.x86_64.rpm	e53c7e869b03111fbe5139a51ebb20a34c45972425c29b938128263d3e605eb2	ELSA-2024-7101	ol7_x86_64_u9_patch
	httpd-devel-2.4.6-99.0.3.el7_9.1.x86_64.rpm	71e0e1fa17b9ea75b6d3d74817fe6317ffa8a9ce9d7562018a0ac3149eb068a7	ELSA-2024-7101	ol7_x86_64_latest
	httpd-devel-2.4.6-99.0.3.el7_9.1.x86_64.rpm	71e0e1fa17b9ea75b6d3d74817fe6317ffa8a9ce9d7562018a0ac3149eb068a7	ELSA-2024-7101	ol7_x86_64_u9_patch
	httpd-manual-2.4.6-99.0.3.el7_9.1.noarch.rpm	9516bfcc8a54f173de1081b571b58cf7661ebf8a7a7f43d54493dcd2cc6735f6	ELSA-2024-7101	ol7_x86_64_latest
	httpd-manual-2.4.6-99.0.3.el7_9.1.noarch.rpm	9516bfcc8a54f173de1081b571b58cf7661ebf8a7a7f43d54493dcd2cc6735f6	ELSA-2024-7101	ol7_x86_64_u9_patch
	httpd-tools-2.4.6-99.0.3.el7_9.1.x86_64.rpm	fae04c5ea7d84179993f2548ab8bbdf76a136d5aa96ea16519c09274a1e3a755	ELSA-2024-7101	ol7_x86_64_latest
	httpd-tools-2.4.6-99.0.3.el7_9.1.x86_64.rpm	fae04c5ea7d84179993f2548ab8bbdf76a136d5aa96ea16519c09274a1e3a755	ELSA-2024-7101	ol7_x86_64_u9_patch
	mod_ldap-2.4.6-99.0.3.el7_9.1.x86_64.rpm	f6ca10ff08cfe91d89967b4954aa660bc25d55d7da205ed609ad3ab19b9d3e86	ELSA-2024-7101	ol7_x86_64_optional_latest
	mod_proxy_html-2.4.6-99.0.3.el7_9.1.x86_64.rpm	766bdf1eab367a2a3c7554bc021120666ba4f9caaf6d83eab146f9dc95ba9b26	ELSA-2024-7101	ol7_x86_64_optional_latest
	mod_session-2.4.6-99.0.3.el7_9.1.x86_64.rpm	710492fedfd7af575f607f9dfe9b2ea1231d39548391e6a6c207dffe749c52b3	ELSA-2024-7101	ol7_x86_64_latest
	mod_session-2.4.6-99.0.3.el7_9.1.x86_64.rpm	710492fedfd7af575f607f9dfe9b2ea1231d39548391e6a6c207dffe749c52b3	ELSA-2024-7101	ol7_x86_64_u9_patch
	mod_ssl-2.4.6-99.0.3.el7_9.1.x86_64.rpm	c7db9ba119fd4d073a29f8fc85b281ce98e6a9483bde763e6a23b96d54dc45dc	ELSA-2024-7101	ol7_x86_64_latest
	mod_ssl-2.4.6-99.0.3.el7_9.1.x86_64.rpm	c7db9ba119fd4d073a29f8fc85b281ce98e6a9483bde763e6a23b96d54dc45dc	ELSA-2024-7101	ol7_x86_64_u9_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691