Описание
ELSA-2022-0891: httpd:2.4 security update (MODERATE)
httpd [2.4.37-43.0.2.2]
- Set vstring per ORACLE_SUPPORT_PRODUCT [Orabug: 29892262]
- Replace index.html with Oracle's index page oracle_index.html
[2.4.37-43.2]
- Resolves: #2059256 - CVE-2021-34798 httpd:2.4/httpd: NULL pointer dereference via malformed requests
- Resolves: #2059257 - CVE-2021-39275 httpd:2.4/httpd: out-of-bounds write in ap_escape_quotes() via malicious input
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
Module httpd:2.4 is enabled
httpd
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
httpd-devel
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
httpd-filesystem
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
httpd-manual
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
httpd-tools
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
mod_http2
1.15.7-3.module+el8.4.0+20024+b87b2deb
mod_ldap
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
mod_md
2.0.8-8.module+el8.5.0+20475+4f6a8fd5
mod_proxy_html
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
mod_session
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
mod_ssl
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
Oracle Linux x86_64
Module httpd:2.4 is enabled
httpd
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
httpd-devel
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
httpd-filesystem
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
httpd-manual
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
httpd-tools
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
mod_http2
1.15.7-3.module+el8.4.0+20024+b87b2deb
mod_ldap
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
mod_md
2.0.8-8.module+el8.5.0+20475+4f6a8fd5
mod_proxy_html
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
mod_session
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
mod_ssl
2.4.37-43.0.2.module+el8.5.0+20518+d9453e37.2
