Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

mod_ssl-2.4.57-11.el9_4.1 RPM for x86_64

From AlmaLinux 9.4 AppStream for x86_64

Name: mod_ssl Distribution: AlmaLinux
Version: 2.4.57 Vendor: AlmaLinux
Release: 11.el9_4.1 Build date: Thu Aug 8 19:27:53 2024
Group: Unspecified Build host: x64-builder02.almalinux.org
Size: 274806 Source RPM: httpd-2.4.57-11.el9_4.1.src.rpm
Packager: AlmaLinux Packaging Team <[email protected]>
Url: https://httpd.apache.org/
Summary: SSL/TLS module for the Apache HTTP Server
The mod_ssl module provides strong cryptography for the Apache HTTP
server via the Secure Sockets Layer (SSL) and Transport Layer
Security (TLS) protocols.

Provides

Requires

License

ASL 2.0

Changelog

* Mon Aug 05 2024 Luboš Uhliarik <[email protected]> - 2.4.57-11.1
  - Resolves: RHEL-46047 - httpd: Security issues via backend applications whose
    response headers are malicious or exploitable (CVE-2024-38476)
  - Resolves: RHEL-53021 - Regression introduced by CVE-2024-38474 fix
* Thu Jul 04 2024 Luboš Uhliarik <[email protected]> - 2.4.57-11
  - Resolves: RHEL-45792 -  httpd: Encoding problem in
    mod_proxy (CVE-2024-38473)
* Wed Jul 03 2024 Luboš Uhliarik <[email protected]> - 2.4.57-9
  - Resolves: RHEL-45766 -  httpd: null pointer dereference in
    mod_proxy (CVE-2024-38477)
  - Resolves: RHEL-45749 - httpd: Potential SSRF in mod_rewrite (CVE-2024-39573)
  - Resolves: RHEL-45818 - httpd: Substitution encoding issue in
    mod_rewrite (CVE-2024-38474)
  - Resolves: RHEL-45771 - httpd: Improper escaping of output in
    mod_rewrite (CVE-2024-38475)
* Wed Feb 07 2024 Joe Orton <[email protected]> - 2.4.57-8
  - mod_xml2enc: fix media type handling
    Resolves: RHEL-17686
  - mod_dav: add DavBasePath
    Resolves: RHEL-6600
* Mon Feb 05 2024 Luboš Uhliarik <[email protected]> - 2.4.57-7
  - Resolves: RHEL-14447 - httpd: mod_macro: out-of-bounds read
    vulnerability (CVE-2023-31122)
* Wed Oct 04 2023 Joe Orton <[email protected]> - 2.4.57-6
  - Resolves: RHEL-5071 - mod_dav_fs: add DavLockDBType
  - mod_dav_fs: add global mutex around lockdb interaction
* Thu Jul 20 2023 Tomas Korbar <[email protected]> - 2.4.57-5
  - Fix issue found by covscan
  - Related: #2222001
* Tue Jul 18 2023 Joe Orton <[email protected]> - 2.4.57-4
  - Resolves: #2217726 - Make PROPFIND tolerant of deletion race
* Tue Jul 11 2023 Tomas Korbar <[email protected]> - 2.4.57-3
  - Resolves: #2222001 - mod_status lists BusyWorkers IdleWorkers keys twice
* Fri Apr 14 2023 Luboš Uhliarik <[email protected]> - 2.4.57-2
  - Resolves: #2186645 - Fix issue found by covscan in httpd package
  - Resolves: #2173295 - Include Apache httpd module mod_authnz_fcgi
* Tue Apr 11 2023 Luboš Uhliarik <[email protected]> - 2.4.57-1
  - Resolves: #2184403 - rebase httpd to 2.4.57
  - Resolves: #2177753 - CVE-2023-25690 httpd: HTTP request splitting with
    mod_rewrite and mod_proxy
* Mon Jan 30 2023 Luboš Uhliarik <[email protected]> - 2.4.53-11
  - Resolves: #2162500 - CVE-2006-20001 httpd: mod_dav: out-of-bounds read/write
    of zero byte
  - Resolves: #2162486 - CVE-2022-37436 httpd: mod_proxy: HTTP response splitting
  - Resolves: #2162510 - CVE-2022-36760 httpd: mod_proxy_ajp: Possible request
    smuggling
* Tue Jan 24 2023 Luboš Uhliarik <[email protected]> - 2.4.53-10
  - Resolves: #2160667 - prevent sscg creating /dhparams.pem
* Thu Dec 08 2022 Luboš Uhliarik <[email protected]> - 2.4.53-9
  - Resolves: #2143176 - Dependency from mod_http2 on httpd broken
* Tue Dec 06 2022 Luboš Uhliarik <[email protected]> - 2.4.53-8
  - Resolves: #2151313 - reduce AH03408 log level from WARNING to INFO

Files

/etc/httpd/conf.d/ssl.conf
/etc/httpd/conf.modules.d/00-ssl.conf
/usr/lib/.build-id
/usr/lib/.build-id/02/804548b7b07c2ea7e865515381bf1eec9c852a
/usr/lib/systemd/system/httpd-init.service
/usr/lib/systemd/system/httpd.socket.d/10-listen443.conf
/usr/lib64/httpd/modules/mod_ssl.so
/usr/libexec/httpd-ssl-gencerts
/usr/libexec/httpd-ssl-pass-dialog
/usr/share/man/man8/httpd-init.service.8.gz
/var/cache/httpd/ssl


Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Nov 12 07:32:02 2024