httpd 보안 업데이트
업데이트 : 2016.07.21
이름 : httpd-100:2.4.23-1.an3
벤더 : AnNyung Packaging Team
설명 :
The Apache HTTP Server is a powerful, efficient, and extensible
web server.
변경사항
- update 2.4.23
- security issues
. CVE-2016-5387
The Apache HTTP Server through 2.4.23 follows RFC 3875 section 4.1.18 and
therefore does not protect applications from the presence of untrusted
client data in the HTTP_PROXY environment variable, which might allow
remote attackers to redirect an application's outbound HTTP traffic to an
arbitrary proxy server via a crafted Proxy header in an HTTP request, aka
an "httpoxy" issue.
업데이트 패키지
SRPMS:
. httpd-2.4.23-1.an3.src.rpm
x86_64:
. httpd-2.4.23-1.an3.x86_64.rpm
. httpd-devel-2.4.23-1.an3.x86_64.rpm
. httpd-tools-2.4.23-1.an3.x86_64.rpm
. mod_ldap-2.4.23-1.an3.x86_64.rpm
. mod_proxy_html-2.4.23-1.an3.x86_64.rpm
. mod_session-2.4.23-1.an3.x86_64.rpm
. mod_ssl-2.4.23-1.an3.x86_64.rpm
noarch:
. httpd-manual-2.4.23-1.an3.noarch.rpm
|