[ol9_appstream] httpd-tools-2.4.53-7.0.1.el9.aarch64

Name:	httpd-tools
Version:	2.4.53
Release:	7.0.1.el9
Architecture:	aarch64
Group:	Unspecified
Size:	455303
License:	ASL 2.0
RPM:	httpd-tools-2.4.53-7.0.1.el9.aarch64.rpm
Source RPM:	httpd-2.4.53-7.0.1.el9.src.rpm
Build Date:	Thu Oct 06 2022
Build Host:	build-ol9-aarch64.oracle.com
Vendor:	Oracle America
URL:	https://httpd.apache.org/
Summary:	Tools for use with the Apache HTTP Server
Description:	The httpd-tools package contains tools which can be used with the Apache HTTP Server.

Changelog (Show File list) (Show related packages)

Mon Oct 03 2022 Darren Archibald <darren.archibald@oracle.com> - 2.4.53-7.0.1
```
- Replace index.html with Oracle's index page oracle_index.html.
```

Wed Jul 20 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-7

- Resolves: #2094997 - CVE-2022-26377 httpd: mod_proxy_ajp: Possible request
  smuggling
- Resolves: #2097032 - CVE-2022-28615 httpd: out-of-bounds read in 
  ap_strcmp_match()
- Resolves: #2098248 - CVE-2022-31813 httpd: mod_proxy: X-Forwarded-For dropped
  by hop-by-hop mechanism
- Resolves: #2097016 - CVE-2022-28614 httpd: out-of-bounds read via ap_rwrite()
- Resolves: #2097452 - CVE-2022-29404 httpd: mod_lua: DoS in r:parsebody
- Resolves: #2097459 - CVE-2022-30522 httpd: mod_sed: DoS vulnerability
- Resolves: #2097481 - CVE-2022-30556 httpd: mod_lua: Information disclosure
  with websockets

Mon Jun 27 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-6
```
- Related: #2065677 - httpd minimisation for ubi-micro
```

Fri Jun 24 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-5

- Resolves: #2098056 - mod_ldap: High CPU usage at apr_ldap_rebind_remove()

Thu Jun 16 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-4

- Resolves: #2095838 - mod_mime_magic: invalid type 0 in mconvert()

Wed Jun 01 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-3

- Resolves: #2065677 - httpd minimisation for ubi-micro
- minimize httpd dependencies (new httpd-core package)
- mod_systemd and mod_brotli are now packaged in the main httpd package

Tue May 31 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.53-1

- new version 2.4.53
- Resolves: #2079939 - httpd rebase to 2.4.53
- Resolves: #2075406 - httpd.conf uses icon bomb.gif for all files/dirs ending
  with core

Mon Apr 11 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.51-8

- Resolves: #2073459 - Cannot override LD_LIBARY_PATH in Apache HTTPD using
  SetEnv or PassEnv

Mon Mar 21 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.51-7

- Resolves: #2065251 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier
- Resolves: #2066311 - CVE-2021-44224 httpd: possible NULL dereference or SSRF
  in forward proxy configurations

Mon Jan 10 2022 Luboš Uhliarik <luhliari@redhat.com> - 2.4.51-5

- Resolves: #2035064 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content