Описание
ELSA-2024-4720: httpd:2.4 security update (IMPORTANT)
httpd [2.4.37-65.0.1.1]
- Replace index.html with Oracle's index page oracle_index.html
[2.4.37-65.1]
- Resolves: RHEL-45812 - httpd:2.4/httpd: Substitution encoding issue in mod_rewrite (CVE-2024-38474)
- Resolves: RHEL-45785 - httpd:2.4/httpd: Encoding problem in mod_proxy (CVE-2024-38473)
- Resolves: RHEL-45777 - httpd:2.4/httpd: Improper escaping of output in mod_rewrite (CVE-2024-38475)
- Resolves: RHEL-45758 - httpd:2.4/httpd: null pointer dereference in mod_proxy (CVE-2024-38477)
- Resolves: RHEL-45743 - httpd:2.4/httpd: Potential SSRF in mod_rewrite (CVE-2024-39573)
mod_http2 mod_md
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
Module httpd:2.4 is enabled
httpd
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
httpd-devel
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
httpd-filesystem
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
httpd-manual
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
httpd-tools
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
mod_http2
1.15.7-10.module+el8.10.0+90327+96b8ea28
mod_ldap
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
mod_md
2.0.8-8.module+el8.9.0+90011+2f9c6a23
mod_proxy_html
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
mod_session
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
mod_ssl
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
Oracle Linux x86_64
Module httpd:2.4 is enabled
httpd
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
httpd-devel
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
httpd-filesystem
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
httpd-manual
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
httpd-tools
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
mod_http2
1.15.7-10.module+el8.10.0+90327+96b8ea28
mod_ldap
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
mod_md
2.0.8-8.module+el8.9.0+90011+2f9c6a23
mod_proxy_html
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
mod_session
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
mod_ssl
2.4.37-65.0.1.module+el8.10.0+90368+a557a4bf.1
