[ol7_software_collections] httpd24-mod_ldap-2.4.34-18.0.1.el7.aarch64

Name:	httpd24-mod_ldap
Version:	2.4.34
Release:	18.0.1.el7
Architecture:	aarch64
Group:	System Environment/Daemons
Size:	203709
License:	ASL 2.0
RPM:	httpd24-mod_ldap-2.4.34-18.0.1.el7.aarch64.rpm
Source RPM:	httpd24-httpd-2.4.34-18.0.1.el7.src.rpm
Build Date:	Tue Jun 02 2020
Build Host:	ca-buildarm02.us.oracle.com
Vendor:	Oracle America
URL:	http://httpd.apache.org/
Summary:	LDAP authentication modules for the Apache HTTP Server
Description:	The mod_ldap and mod_authnz_ldap modules add support for LDAP authentication to the Apache HTTP Server.

Changelog (Show File list) (Show related packages)

Mon Jun 01 2020 Alan Steinberg <alan.steinberg@oracle.com> - 2.4.34-18.0.1

- replace index.html with Oracle's index page oracle_index.html
- update vstring in specfile

Tue Mar 17 2020 Lubos Uhliarik <luhliari@redhat.com> - 2.4.34-18

- Related: #1743959 (CVE-2019-10098) - CVE-2019-10098 httpd: mod_rewrite
  potential open redirect

Mon Feb 03 2020 Lubos Uhliarik <luhliari@redhat.com> - 2.4.34-16

- remove bundled mod_md module
- Resolves: #1788976 - RFE: updated collection for httpd 2.4
- Resolves: #1743959 (CVE-2019-10098) - CVE-2019-10098 httpd: mod_rewrite 
  potential open redirect

Wed Nov 13 2019 Lubos Uhliarik <luhliari@redhat.com> - 2.4.34-15

- Related: #1725922 - duplicated cookie in Apache httpd with mod_session

Tue Oct 08 2019 Lubos Uhliarik <luhliari@redhat.com> - 2.4.34-14

- Resolves: #1743996 (CVE-2019-10097) - CVE-2019-10097 httpd: null-pointer
  dereference in mod_remoteip
- Resolves: #1747282 - CVE-2019-10092 httpd24-httpd: httpd: limited cross-site
  scripting in mod_proxy error page

Tue Oct 08 2019 Lubos Uhliarik <luhliari@redhat.com> - 2.4.34-13
```
- Resolves: #1744120 - Unexpected OCSP in proxy SSL connection
```

Fri Oct 04 2019 Joe Orton <jorton@redhat.com> - 2.4.34-12

- Resolves: #1725922 - duplicated cookie in Apache httpd with mod_session

Tue Sep 24 2019 Lubos Uhliarik <luhliari@redhat.com> - 2.4.34-11

- Resolves: #1678567 (CVE-2018-17189) - CVE-2018-17189 httpd: mod_http2:
  DoS via slow, unneeded request bodies

Wed Aug 28 2019 Lubos Uhliarik <luhliari@redhat.com> - 2.4.34-10

- Resolves: #1745695 - CVE-2019-9511 httpd24-httpd: HTTP/2: large amount of
  data request leads to denial of service
- Resolves: #1745680 - CVE-2019-9516 httpd24-httpd: HTTP/2: 0-length headers
  leads to denial of service
- Resolves: #1745683 - CVE-2019-9517 httpd24-httpd: HTTP/2: request for large
  response leads to denial of service

Wed Aug 07 2019 Lubos Uhliarik <luhliari@redhat.com> - 2.4.34-9

- Resolves: #1696140 - CVE-2019-0217 httpd24-httpd: httpd: mod_auth_digest:
  access control bypass due to race condition
- Resolves: #1696095 - CVE-2019-0220 httpd24-httpd: httpd: URL normalization
  inconsistency
- Resolves: #1677498 - CVE-2018-17199 httpd24-httpd: httpd: mod_session_cookie
  does not respect expiry time
- Resolves: #1707636 - fix a regression introduced in r1740928
- Resolves: #1669213 - `ExtendedStatus Off` directive when using mod_systemd
  causes systemctl to hang
- Resolves: #1673019 - httpd can not be started with mod_md enabled