ELSA-2023-1673 -- Oracle httpd_mod_http2_mod_md_mod_ldap_mod_proxy_html_mod_session_mod_ssl| ID: oval:org.secpod.oval:def:1506505 | Date: (C)2023-04-14 (M)2024-04-29 |
| Class: PATCH | Family: unix |
httpd [2.4.37-51.5.0.1] - Set vstring per ORACLE_SUPPORT_PRODUCT [Orabug: 29892262] - Replace index.html with Oracle"s index page oracle_index.html [2.4.37-51.5] - Resolves: #2177747 - CVE-2023-25690 httpd:2.4/httpd: HTTP request splitting with mod_rewrite and mod_proxy [2.4.37-51.1] - Resolves: #2165967 - prevent sscg creating /dhparams.pem - Resolves: #2165976 - CVE-2006-20001 httpd: mod_dav: out-of-bounds read/write of zero byte - Resolves: #2165977 - CVE-2022-37436 httpd: mod_proxy: HTTP response splitting - Resolves: #2165978 - CVE-2022-36760 httpd: mod_proxy_ajp: Possible request smuggling mod_http2 [1.15.7-5.4] - Resolves: #2177747 - CVE-2023-25690 httpd:2.4/httpd: HTTP request splitting with mod_rewrite and mod_proxy
| Product: |
| httpd |
| mod_http2 |
| mod_md |
| mod_ldap |
| mod_proxy_html |
| mod_session |
| mod_ssl |
