Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

mod_ssl-2.4.57-2.el9 RPM for ppc64le

From CentOS Stream 9 AppStream for ppc64le

Name: mod_ssl Distribution: CentOS
Version: 2.4.57 Vendor: CentOS
Release: 2.el9 Build date: Fri Apr 14 11:22:53 2023
Group: Unspecified Build host: ppc64le-03.stream.rdu2.redhat.com
Size: 344182 Source RPM: httpd-2.4.57-2.el9.src.rpm
Packager: builder@centos.org
Url: https://httpd.apache.org/
Summary: SSL/TLS module for the Apache HTTP Server
 
The mod_ssl module provides strong cryptography for the Apache HTTP
server via the Secure Sockets Layer (SSL) and Transport Layer
Security (TLS) protocols.

Provides

Requires

License

ASL 2.0

Changelog

* Fri Apr 14 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.4.57-2
  - Resolves: #2186645 - Fix issue found by covscan in httpd package
  - Resolves: #2173295 - Include Apache httpd module mod_authnz_fcgi
* Tue Apr 11 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.4.57-1
  - Resolves: #2184403 - rebase httpd to 2.4.57
  - Resolves: #2177753 - CVE-2023-25690 httpd: HTTP request splitting with
    mod_rewrite and mod_proxy
* Mon Jan 30 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-11
  - Resolves: #2162500 - CVE-2006-20001 httpd: mod_dav: out-of-bounds read/write
    of zero byte
  - Resolves: #2162486 - CVE-2022-37436 httpd: mod_proxy: HTTP response splitting
  - Resolves: #2162510 - CVE-2022-36760 httpd: mod_proxy_ajp: Possible request
    smuggling
* Tue Jan 24 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-10
  - Resolves: #2160667 - prevent sscg creating /dhparams.pem
* Thu Dec 08 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-9
  - Resolves: #2143176 - Dependency from mod_http2 on httpd broken
* Tue Dec 06 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-8
  - Resolves: #2151313 - reduce AH03408 log level from WARNING to INFO
* Wed Jul 20 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-7
  - Resolves: #2094997 - CVE-2022-26377 httpd: mod_proxy_ajp: Possible request
    smuggling
  - Resolves: #2097032 - CVE-2022-28615 httpd: out-of-bounds read in 
    ap_strcmp_match()
  - Resolves: #2098248 - CVE-2022-31813 httpd: mod_proxy: X-Forwarded-For dropped
    by hop-by-hop mechanism
  - Resolves: #2097016 - CVE-2022-28614 httpd: out-of-bounds read via ap_rwrite()
  - Resolves: #2097452 - CVE-2022-29404 httpd: mod_lua: DoS in r:parsebody
  - Resolves: #2097459 - CVE-2022-30522 httpd: mod_sed: DoS vulnerability
  - Resolves: #2097481 - CVE-2022-30556 httpd: mod_lua: Information disclosure
    with websockets
* Mon Jun 27 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-6
  - Related: #2065677 - httpd minimisation for ubi-micro
* Fri Jun 24 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-5
  - Resolves: #2098056 - mod_ldap: High CPU usage at apr_ldap_rebind_remove()
* Thu Jun 16 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-4
  - Resolves: #2095838 - mod_mime_magic: invalid type 0 in mconvert()
* Wed Jun 01 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-3
  - Resolves: #2065677 - httpd minimisation for ubi-micro
  - minimize httpd dependencies (new httpd-core package)
  - mod_systemd and mod_brotli are now packaged in the main httpd package
* Tue May 31 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-1
  - new version 2.4.53
  - Resolves: #2079939 - httpd rebase to 2.4.53
  - Resolves: #2075406 - httpd.conf uses icon bomb.gif for all files/dirs ending
    with core
* Mon Apr 11 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.51-8
  - Resolves: #2073459 - Cannot override LD_LIBARY_PATH in Apache HTTPD using
    SetEnv or PassEnv
* Mon Mar 21 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.51-7
  - Resolves: #2065251 - CVE-2022-22720 httpd: HTTP request smuggling
    vulnerability in Apache HTTP Server 2.4.52 and earlier
  - Resolves: #2066311 - CVE-2021-44224 httpd: possible NULL dereference or SSRF
    in forward proxy configurations
* Mon Jan 10 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.51-5
  - Resolves: #2035064 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
    when parsing multipart content
* Mon Dec 06 2021 Neal Gompa <ngompa@centosproject.org> - 2.4.51-4
  - Use NAME from os-release(5) for vendor string
    Resolves: #2029071 - httpd on CentOS identifies as RHEL
* Fri Dec 03 2021 Joe Orton <jorton@redhat.com> - 2.4.51-3
  - add fixes for static analyzer issues (#1938740)
* Mon Nov 08 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.51-2
  - Resolves: #2005416 - httpd default configuration changes
* Tue Oct 19 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.51-1
  - new version 2.4.51 (#2011090)
* Fri Sep 17 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.49-1
  - new version 2.4.49 (#2005339)
* Wed Sep 15 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-18
  - Resolves: #2004143 - RFE: mod_ssl: allow sending multiple CA names which
    differ only in case
* Mon Aug 09 2021 Mohan Boddu <mboddu@redhat.com> - 2.4.48-17
  - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
    Related: rhbz#1991688
* Fri Aug 06 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-16
  - Resolves: #1956386 - Apache trademark update - new logo
* Fri Aug 06 2021 Florian Weimer <fweimer@redhat.com> - 2.4.48-14
  - Rebuild to pick up new build flags from redhat-rpm-config (#1984652)
* Wed Jul 28 2021 Joe Orton <jorton@redhat.com> - 2.4.48-13
  - mod_ssl: OpenSSL 3 compatibility update (#1986822)
* Thu Jul 15 2021 Joe Orton <jorton@redhat.com> - 2.4.48-12
  - mod_ssl: add SSLKEYLOGFILE support (#1982656)
* Mon Jul 12 2021 Joe Orton <jorton@redhat.com> - 2.4.48-11
  - mod_cgid: fix doubled script timeout (#1977234)
* Fri Jul 09 2021 Joe Orton <jorton@redhat.com> - 2.4.48-10
  - fix release in ServerTokens Full-Release (#1932442)
* Wed Jul 07 2021 Joe Orton <jorton@redhat.com> - 2.4.48-9
  - use OOMPolicy=continue in httpd.service, httpd@.service (#1947475)
* Thu Jul 01 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-8
  - Resolves: #1950021 - [RFE] Update httpd directive SSLProxyMachineCertificateFile
    to be able to handle certs without matching private key
* Thu Jul 01 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-7
  - Resolves: #1950011 - unorderly connection close when client attempts
    renegotiation
* Thu Jul 01 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-6
  - Resolves: #1932442 - "ServerTokens Full-Release" support
* Fri Jun 25 2021 Joe Orton <jorton@redhat.com> - 2.4.48-5
  - mod_ssl: fix loading encrypted privkeys with OpenSSL 3.0 (#1976080)
* Fri Jun 25 2021 Joe Orton <jorton@redhat.com> - 2.4.48-4
  - add OpenSSL v3 compatibility fixes (#1975201)
* Wed Jun 16 2021 Mohan Boddu <mboddu@redhat.com> - 2.4.48-3
  - Rebuilt for RHEL 9 BETA for openssl 3.0
    Related: rhbz#1971065
* Tue Jun 08 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-2
  - Resolves: #1947099 - centralizing default index.html for httpd
* Wed Jun 02 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.48-1
  - new version 2.4.48
  - Resolves: #1952817 - rebase to 2.4.48
* Wed May 26 2021 Luboš Uhliarik <luhliari@redhat.com> - 2.4.46-15
  - Resolves: #1949606 - RFE: httpd, add IP_FREEBIND support for Listen
* Wed May 19 2021 Lubos Uhliarik <luhliari@redhat.com> - 2.4.46-14
  - Resolves: #1949969 - httpd : mod_proxy should allow to specify
    Proxy-Authorization in ProxyRemote directive
* Thu Apr 22 2021 Lubos Uhliarik <luhliari@redhat.com> - 2.4.46-13
  - Resolves: #1952546 - mod_proxy_wstunnel.html is a malformed XML
* Fri Apr 16 2021 Mohan Boddu <mboddu@redhat.com> - 2.4.46-12
  - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937

Files

/etc/httpd/conf.d/ssl.conf
/etc/httpd/conf.modules.d/00-ssl.conf
/usr/lib/.build-id
/usr/lib/.build-id/ae/d7120502993c7f4985f5f9169c83125c0412e0
/usr/lib/systemd/system/httpd-init.service
/usr/lib/systemd/system/httpd.socket.d/10-listen443.conf
/usr/lib64/httpd/modules/mod_ssl.so
/usr/libexec/httpd-ssl-gencerts
/usr/libexec/httpd-ssl-pass-dialog
/usr/share/man/man8/httpd-init.service.8.gz
/var/cache/httpd/ssl

Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Apr 9 17:39:43 2024