ELSA-2023-1673 -- Oracle httpd_mod_http2_mod_md_mod_ldap_mod_proxy_html_mod_session_mod_sslID: oval:org.secpod.oval:def:1506505 | Date: (C)2023-04-14 (M)2024-04-29 |
Class: PATCH | Family: unix |
httpd [2.4.37-51.5.0.1] - Set vstring per ORACLE_SUPPORT_PRODUCT [Orabug: 29892262] - Replace index.html with Oracle"s index page oracle_index.html [2.4.37-51.5] - Resolves: #2177747 - CVE-2023-25690 httpd:2.4/httpd: HTTP request splitting with mod_rewrite and mod_proxy [2.4.37-51.1] - Resolves: #2165967 - prevent sscg creating /dhparams.pem - Resolves: #2165976 - CVE-2006-20001 httpd: mod_dav: out-of-bounds read/write of zero byte - Resolves: #2165977 - CVE-2022-37436 httpd: mod_proxy: HTTP response splitting - Resolves: #2165978 - CVE-2022-36760 httpd: mod_proxy_ajp: Possible request smuggling mod_http2 [1.15.7-5.4] - Resolves: #2177747 - CVE-2023-25690 httpd:2.4/httpd: HTTP request splitting with mod_rewrite and mod_proxy
Product: |
httpd |
mod_http2 |
mod_md |
mod_ldap |
mod_proxy_html |
mod_session |
mod_ssl |