Описание
ELSA-2009-1148: httpd security update (IMPORTANT)
[2.2.3-22.0.1.el5_3.2]
- Replace index.html with Oracle's index page oracle_index.html
- Update vstring and distro in specfile
[2.2.3-22.el5_3.2]
- add security fixes for CVE-2009-1890, CVE-2009-1891 (#509782)
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
httpd
2.2.3-22.0.1.el5_3.2
httpd-devel
2.2.3-22.0.1.el5_3.2
httpd-manual
2.2.3-22.0.1.el5_3.2
mod_ssl
2.2.3-22.0.1.el5_3.2
Oracle Linux i386
httpd
2.2.3-22.0.1.el5_3.2
httpd-devel
2.2.3-22.0.1.el5_3.2
httpd-manual
2.2.3-22.0.1.el5_3.2
mod_ssl
2.2.3-22.0.1.el5_3.2
Связанные CVE
Связанные уязвимости
The mod_deflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service (CPU consumption).
The mod_deflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service (CPU consumption).
The mod_deflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service (CPU consumption).
The mod_deflate module in Apache httpd 2.2.11 and earlier compresses l ...
The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server before 2.3.3, when a reverse proxy is configured, does not properly handle an amount of streamed data that exceeds the Content-Length value, which allows remote attackers to cause a denial of service (CPU consumption) via crafted requests.