[CLSA-2026:1767613214] httpd: Fix of CVE-2025-58098
Type:
security
Severity:
Important
Release date:
2026-01-05 11:40:18 UTC
Description:
- CVE-2025-58098: fix mod_cgid to not pass arguments for SSI requests
Updated packages:
  • httpd-2.4.37-39.module_el8.4.0+2318+39f70dbe.1.tuxcare.els17.x86_64.rpm
    sha:eeba75f87e3eb724659af383ee0617eed71b5671b34b6ce4b643d1de9f8ee62f
  • httpd-devel-2.4.37-39.module_el8.4.0+2318+39f70dbe.1.tuxcare.els17.x86_64.rpm
    sha:24ed7b10c915d4b39632fe26bb58ea68a397c912881ac4c8b38cf2c660e35fa1
  • httpd-filesystem-2.4.37-39.module_el8.4.0+2318+39f70dbe.1.tuxcare.els17.noarch.rpm
    sha:e4ba0d74f66a7af33b741d42483b613aea8e4eb67f5b53aa8f821f4642a8f0cf
  • httpd-manual-2.4.37-39.module_el8.4.0+2318+39f70dbe.1.tuxcare.els17.noarch.rpm
    sha:164c9c61ba9380d10f10b42b7dc63bfa99683aaa60b615459e748f15acc78d5a
  • httpd-tools-2.4.37-39.module_el8.4.0+2318+39f70dbe.1.tuxcare.els17.x86_64.rpm
    sha:73c3200a0c2ba55ce680f4e89f6d829174c1486bbcf19255cbcb0dda2abcd9d3
  • mod_ldap-2.4.37-39.module_el8.4.0+2318+39f70dbe.1.tuxcare.els17.x86_64.rpm
    sha:ca05f7eefb1b76fd3a0e27d86823bdf8b68ec9e6bbd60a808545d021f6118830
  • mod_proxy_html-2.4.37-39.module_el8.4.0+2318+39f70dbe.1.tuxcare.els17.x86_64.rpm
    sha:a8c6c5330ad17d69fe8dcba8545565e1b49e722bdf6930d31f50119c812dc4ed
  • mod_session-2.4.37-39.module_el8.4.0+2318+39f70dbe.1.tuxcare.els17.x86_64.rpm
    sha:2b713323782fcb25603487a00d72a34c8416bbae43b5531e77ab557d3875ccf2
  • mod_ssl-2.4.37-39.module_el8.4.0+2318+39f70dbe.1.tuxcare.els17.x86_64.rpm
    sha:69fd285a7c26c84e4680d3d48da081d339c6d25ee8735ad338cb5eef46df8ebe
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.