SciLinux: SLSA-2019-2343-1 Moderate: httpd on SL7.x x86_64
httpd: mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * httpd: URL normalization inconsistency (CVE-2019-0220) SL7 x86_64 httpd-tools-2.4.6-90.el7.x86...
Summary
Moderate: httpd security and bug fix update
Security Fixes
* httpd: mod_auth_digest: access control bypass due to race condition
(CVE-2019-0217)
* httpd: URL normalization inconsistency (CVE-2019-0220)
SL7
x86_64
httpd-tools-2.4.6-90.el7.x86_64.rpm
mod_ssl-2.4.6-90.el7.x86_64.rpm
httpd-devel-2.4.6-90.el7.x86_64.rpm
httpd-manual-2.4.6-90.el7.noarch.rpm
httpd-2.4.6-90.el7.x86_64.rpm
mod_session-2.4.6-90.el7.x86_64.rpm
mod_proxy_html-2.4.6-90.el7.x86_64.rpm
mod_ldap-2.4.6-90.el7.x86_64.rpm
httpd-debuginfo-2.4.6-90.el7.x86_64.rpm
noarch
httpd-manual-2.4.6-90.el7.noarch.rpm
- Scientific Linux Development Team
Severity
Advisory ID: SLSA-2019:2343-1
Issued Date: : 2019-08-06
CVE Numbers: CVE-2019-0220
CVE-2019-0217
