httpd 보안 업데이트
업데이트 : 2022.08.27
이름 : httpd-100:2.4.54-1.an3
벤더 : AnNyung Packaging Team
설명 :
The Apache HTTP Server is a powerful, efficient, and extensible
web server.
변경사항
- update 2.4.54
see also https://downloads.apache.org/httpd/CHANGES_2.4.54
- security issues
. CVE-2022-31813: mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism
. CVE-2022-30556: Information Disclosure in mod_lua with websockets
. CVE-2022-30522: mod_sed denial of service
. CVE-2022-29404: Denial of service in mod_lua r:parsebody
. CVE-2022-28615: Read beyond bounds in ap_strcmp_match()
. CVE-2022-28614: read beyond bounds via ap_rwrite()
. CVE-2022-28330: read beyond bounds in mod_isapi
. CVE-2022-26377: mod_proxy_ajp: Possible request smuggling
업데이트 패키지
SRPMS:
. httpd-2.4.54-1.an3.src.rpm
x86_64:
. httpd-2.4.54-1.an3.x86_64.rpm
. httpd-devel-2.4.54-1.an3.x86_64.rpm
. httpd-tools-2.4.54-1.an3.x86_64.rpm
. mod_brotli-2.4.54-1.an3.x86_64.rpm
. mod_ldap-2.4.54-1.an3.x86_64.rpm
. mod_md-2.4.54-1.an3.x86_64.rpm
. mod_proxy_html-2.4.54-1.an3.x86_64.rpm
. mod_session-2.4.54-1.an3.x86_64.rpm
. mod_ssl-2.4.54-1.an3.x86_64.rpm
noarch:
. httpd-manual-2.4.54-1.an3.noarch.rpm
|