Release date:
2026-03-17 18:27:19 UTC
Description:
* SECURITY UPDATE: SNI validation issue in mod_ssl
- debian/patches/CVE-2025-23048.patch: update SNI validation to
move the SSL compatibility check after strict SNI hostname
verification in modules/ssl/ssl_engine_kernel.c.
- CVE-2025-23048
Updated packages:
-
apache2_2.4.41-4ubuntu3.23+tuxcare.els1_amd64.deb
sha:2e41da56128c88cdfabc79a4d37c02aa1b941252
-
apache2-bin_2.4.41-4ubuntu3.23+tuxcare.els1_amd64.deb
sha:81c668c9f2886c79cebc1bd6d36b66204f8482c8
-
apache2-data_2.4.41-4ubuntu3.23+tuxcare.els1_all.deb
sha:ccfbd74d234b69ab09711c430bd11e1e8054f4a0
-
apache2-dev_2.4.41-4ubuntu3.23+tuxcare.els1_amd64.deb
sha:1abac993f226abb9d5d6841b533aad0572a30522
-
apache2-doc_2.4.41-4ubuntu3.23+tuxcare.els1_all.deb
sha:15fbf0d46e782a23455b9a1877da5a97e214c848
-
apache2-ssl-dev_2.4.41-4ubuntu3.23+tuxcare.els1_amd64.deb
sha:0780146d42e1765ebf41bf468e41aa134e5fff9a
-
apache2-suexec-custom_2.4.41-4ubuntu3.23+tuxcare.els1_amd64.deb
sha:f47f1861619f28fb364e056f78fb3e7dc994e084
-
apache2-suexec-pristine_2.4.41-4ubuntu3.23+tuxcare.els1_amd64.deb
sha:52762e773c980354d572ec1589330310f6a3d1e5
-
apache2-utils_2.4.41-4ubuntu3.23+tuxcare.els1_amd64.deb
sha:20f530f58415a36d2c71a4989f601bc112e4739a
-
libapache2-mod-md_2.4.41-4ubuntu3.23+tuxcare.els1_amd64.deb
sha:955b905e8a7c9a35906f0a9bfb648f7a67c2dfbb
-
libapache2-mod-proxy-uwsgi_2.4.41-4ubuntu3.23+tuxcare.els1_amd64.deb
sha:cab6c2fabf5acb553c5e54bcc10f604a142246f9
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
