[CLSA-2022:1668706027] httpd: Fix of 2 CVEs
Type:
security
Severity:
Important
Release date:
2022-11-17
Description:
- CVE-2022-28614: handle large writes in ap_rputs() - CVE-2022-29404: use a liberal default limit for LimitRequestBody of 1GB
Updated packages:
  • httpd-2.4.37-43.module_el8.5.0+2083+6f259f31.tuxcare.els8.x86_64.rpm
    sha:0c29204811b7d221dc1c041f83417ca1d2b87d21
  • httpd-devel-2.4.37-43.module_el8.5.0+2083+6f259f31.tuxcare.els8.x86_64.rpm
    sha:d8805cf6b371f0dc096158abe92af80a5d3fa344
  • httpd-filesystem-2.4.37-43.module_el8.5.0+2083+6f259f31.tuxcare.els8.noarch.rpm
    sha:339533fdeb11ebb3023ec357005592b0e32e2e8c
  • httpd-manual-2.4.37-43.module_el8.5.0+2083+6f259f31.tuxcare.els8.noarch.rpm
    sha:d7f77358b1d20620ba13a268e820a66a59c7ee29
  • httpd-tools-2.4.37-43.module_el8.5.0+2083+6f259f31.tuxcare.els8.x86_64.rpm
    sha:212f0c22871af765140fa1e409ec39a5df312295
  • mod_ldap-2.4.37-43.module_el8.5.0+2083+6f259f31.tuxcare.els8.x86_64.rpm
    sha:381074161c6389f74a304073c6ae6a9360c90ee9
  • mod_proxy_html-2.4.37-43.module_el8.5.0+2083+6f259f31.tuxcare.els8.x86_64.rpm
    sha:56544283ed8299ee59ba71ce7651ff4ecda2bd25
  • mod_session-2.4.37-43.module_el8.5.0+2083+6f259f31.tuxcare.els8.x86_64.rpm
    sha:4cadaa27ffbd8d729100476f5d470c0eea414cd7
  • mod_ssl-2.4.37-43.module_el8.5.0+2083+6f259f31.tuxcare.els8.x86_64.rpm
    sha:a327535c68dfb5a824cf37d196c643a1edc6d12f
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.