httpd:2.4 security update

httpd 2.4.37-43.0.2.3 - Set vstring per ORACLESUPPORTPRODUCT Orabug: 29892262 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-43.3 - Resolves: 2065247 - CVE-2022-22720 httpd:2.4/httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier...

httpd security update

2.2.15-60.0.1.5 - replace index.html with Oracle's index page oracleindex.html - update vstring in specfile 2.2.15-60.5 - Resolves: 1463194 - CVE-2017-3167 httpd: apgetbasicauthpw authentication bypass - Resolves: 1463197 - CVE-2017-3169 httpd: modssl NULL pointer dereference - Resolves: 1463207 ...

Oracle Linux 5 / 6 : httpd (ELSA-2016-1421)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-1421 advisory. 2.2.3-92.0.1 - Add the ability to read DH parameters from the first SSLCertificateFile John Haxby orabug 21671194 - fix modssl always performing full...

httpd security update

2.2.15-47.0.1 - replace index.html with Oracle's index page oracleindex.html - update vstring in specfile 2.2.15-47 - fix regressions caused by fix for CVE-2015-3183 2.2.15-46 - core: fix chunk header parsing defect CVE-2015-3183...

httpd security update

2.2.15-31.0.1.el65 - replace index.html with Oracle's index page oracleindex.html - update vstring in specfile 2.2.15-31 - modcgid: add security fix for CVE-2014-0231 - moddeflate: add security fix for CVE-2014-0118 - modstatus: add security fix for CVE-2014-0226...

Oracle Linux 5 : httpd (ELSA-2008-0967)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2008-0967 advisory. 2.2.3-11.0.1.el52.4 - use oracle index page oracleindex.html - update vstring and distro in specfile 2.2.3-11.el52.4 - add security fixes for...

httpd security update

2.2.15-15.0.1.el62.1 - replace index.html with Oracle's index page oracleindex.html update vstring in specfile 2.2.15-15.1 - add security fixes for CVE-2011-4317, CVE-2012-0053, CVE-2012-0031, CVE-2011-3607 787598 - obviates fix for CVE-2011-3638, patch removed...

httpd security and bug fix update

2.2.15-9.0.1.el61.3 - replace index.html with Oracle's index page - update vstring in specfile 2.2.15-9.3 - add security fixes for CVE-2011-3347, CVE-2011-3368 743901 - fix regressions in CVE-2011-3192 patch 736592...

httpd security update

2.2.15-9.0.1.el61.2 - replace index.html with Oracle's index page - update vstring in specfile 2.2.15-9.2, - updated patch for CVE-2011-3192 from upstream 733062 2.2.15-9.1 - fix 733062 - backported CVE-2011-3192 fix from httpd trunk...

httpd security, bug fix, and enhancement update

2.0.52-41.ent.7.0.1 - Use oracle index page oracleindex.html - Update vstring and distro in specfile 2.0.52-41.ent.7 - add security fix for CVE-2010-0434 572955 - moddav: don't delete the existing resource if a PUT fails 572932 - modssl: add SSLInsecureRenegotiation directive 575805 - Require and...

httpd security update

2.2.3-22.0.1.el53.1 - Replace index.html with oracle's index page oracleindex.html - Update vstring and distro in specfile 2.2.3-22.el53.1 - add security fixes for CVE-2008-1678, CVE-2009-1195 499284...