Release Info

Advisory: CLSA-2023:1698949696

OS: CentOS 7 ELS

Public date: 2023-11-02 14:28:18

Project: httpd

Version: 2.4.6-99.el7.centos.1.tuxcare.els3

Errata link: https://errata.tuxcare.com/centos7-els/CLSA-2023-1698949696.html

Changelog

- CVE-2023-31122: mod_macro: Fix out-of-bounds read vulnerability by using own strncmp function

Update

Update command: yum update httpd*

Packages list

httpd-2.4.6-99.el7.centos.1.tuxcare.els3.x86_64.rpm httpd-devel-2.4.6-99.el7.centos.1.tuxcare.els3.x86_64.rpm httpd-manual-2.4.6-99.el7.centos.1.tuxcare.els3.noarch.rpm httpd-tools-2.4.6-99.el7.centos.1.tuxcare.els3.x86_64.rpm mod_ldap-2.4.6-99.el7.centos.1.tuxcare.els3.x86_64.rpm mod_proxy_html-2.4.6-99.el7.centos.1.tuxcare.els3.x86_64.rpm mod_session-2.4.6-99.el7.centos.1.tuxcare.els3.x86_64.rpm mod_ssl-2.4.6-99.el7.centos.1.tuxcare.els3.x86_64.rpm

CVEs

CVE-2023-31122