ELS for OS
- CVEs
- Releases
- Projects
- Documentation
Live Patches
ELS for PHP
- CVEs
- Releases
- Projects
- Documentation
ELS for Python
- CVEs
- Releases
- Projects
- Documentation
ELS for Dotnet
- CVEs
- Releases
- Projects
- Documentation
ELS for Node.js
- CVEs
- Releases
- Projects
- Documentation

Release Info

Advisory: CLSA-2023:1696536930

OS: CentOS 7 ELS

Public date: 2023-10-05 16:15:32

Project: httpd

Version: 2.4.6-99.el7.centos.1.tuxcare.els2

Errata link: https://errata.tuxcare.com/els_os/centos7els/CLSA-2023-1696536930.html

Changelog

- CVE-2021-26690: Fix NULL pointer dereference in mod_session - CVE-2022-22719: Fix possible process crash due to unnoticed failures in mod_lua - CVE-2022-29404: Fix possible DoS due to no default limit on possible input size in mod_lua - CVE-2022-26377: Fix possible HTTP request smuggling in mod_proxy_ajp

Update

Update command: yum update httpd*

Packages list

httpd-2.4.6-99.el7.centos.1.tuxcare.els2.x86_64.rpm httpd-devel-2.4.6-99.el7.centos.1.tuxcare.els2.x86_64.rpm httpd-manual-2.4.6-99.el7.centos.1.tuxcare.els2.noarch.rpm httpd-tools-2.4.6-99.el7.centos.1.tuxcare.els2.x86_64.rpm mod_ldap-2.4.6-99.el7.centos.1.tuxcare.els2.x86_64.rpm mod_proxy_html-2.4.6-99.el7.centos.1.tuxcare.els2.x86_64.rpm mod_session-2.4.6-99.el7.centos.1.tuxcare.els2.x86_64.rpm mod_ssl-2.4.6-99.el7.centos.1.tuxcare.els2.x86_64.rpm

CVEs