[El-errata] ELSA-2014-0920 Important: Oracle Linux 5 httpd security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Wed Jul 23 11:46:43 PDT 2014


Oracle Linux Security Advisory ELSA-2014-0920

https://rhn.redhat.com/errata/RHSA-2014-0920.html

The following updated rpms for Oracle Linux 5 have been uploaded to the 
Unbreakable Linux Network:

i386:
httpd-2.2.3-87.0.1.el5_10.i386.rpm
httpd-devel-2.2.3-87.0.1.el5_10.i386.rpm
httpd-manual-2.2.3-87.0.1.el5_10.i386.rpm
mod_ssl-2.2.3-87.0.1.el5_10.i386.rpm

x86_64:
httpd-2.2.3-87.0.1.el5_10.x86_64.rpm
httpd-devel-2.2.3-87.0.1.el5_10.i386.rpm
httpd-devel-2.2.3-87.0.1.el5_10.x86_64.rpm
httpd-manual-2.2.3-87.0.1.el5_10.x86_64.rpm
mod_ssl-2.2.3-87.0.1.el5_10.x86_64.rpm

ia64:
httpd-2.2.3-87.0.1.el5_10.ia64.rpm
httpd-devel-2.2.3-87.0.1.el5_10.ia64.rpm
httpd-manual-2.2.3-87.0.1.el5_10.ia64.rpm
mod_ssl-2.2.3-87.0.1.el5_10.ia64.rpm


SRPMS:
http://oss.oracle.com/ol5/SRPMS-updates/httpd-2.2.3-87.0.1.el5_10.src.rpm



Description of changes:

[2.2.3-87.0.1.el5_10]
- fix mod_ssl always performing full renegotiation (Joe Jin) [orabug 
12423387]
- replace index.html with Oracle's index page oracle_index.html
- update vstring and distro in specfile

[2.2.3-87]
- mod_cgid: add security fix for CVE-2014-0231
- mod_deflate: add security fix for CVE-2014-0118

[2.2.3-86]
- mod_status: add security fix for CVE-2014-0226






More information about the El-errata mailing list