红帽产品勘误 RHSA-2024:0584 - Security Advisory
发布:
2024-01-30
已更新:
2024-01-30

RHSA-2024:0584 - Security Advisory

概述

Moderate: libmicrohttpd security update

类型/严重性

Security Advisory: Moderate

Red Hat Insights 补丁分析

识别并修复受此公告影响的系统。

查看受影响的系统

标题

An update for libmicrohttpd is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

描述

GNU libmicrohttpd is a small C library that makes it easy to run an HTTP server as part of another application.

Security Fix(es):

  • libmicrohttpd: remote DoS (CVE-2023-27371)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

解决方案

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the updated packages, the httpd daemon will be restarted automatically.

受影响的产品

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8 x86_64
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8 s390x
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8 ppc64le
  • Red Hat Enterprise Linux Server - TUS 8.8 x86_64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64
  • Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 8.8 x86_64
  • Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 8.8 ppc64le
  • Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 8.8 s390x
  • Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 8.8 aarch64

修复

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8

SRPM
libmicrohttpd-0.9.59-2.el8_8.1.src.rpm SHA-256: 0456cfabc4edadd7333794d004afe340ea2f963c9f79277fd0913ef8d5af3f7b
x86_64
libmicrohttpd-0.9.59-2.el8_8.1.i686.rpm SHA-256: 25a5294eb270a32a00a2bd1e97dc6b40c37fdc329bc0b3377f2515fc22a4ce7e
libmicrohttpd-0.9.59-2.el8_8.1.x86_64.rpm SHA-256: d0fe6a2c6886eb013d35e6fa012bda1d849f500f7c5d161776355d870cd9585c
libmicrohttpd-debuginfo-0.9.59-2.el8_8.1.i686.rpm SHA-256: cd66a67f337c06337047271d7f61cad3e1a5c4764dd08d16e39f1ecb6480c382
libmicrohttpd-debuginfo-0.9.59-2.el8_8.1.x86_64.rpm SHA-256: 564aca0aebf1705027c8f3ec00c5b110d3b009fc1b9beb9a4bb11772dcbd5d1d
libmicrohttpd-debugsource-0.9.59-2.el8_8.1.i686.rpm SHA-256: 21ee0befcd15ce0d12ec180c83e3fc3c8d838e1b8562b3a186a2bb1befab66e5
libmicrohttpd-debugsource-0.9.59-2.el8_8.1.x86_64.rpm SHA-256: e59e4977bfdfcc43e6d2a9dd067c601609173d4396fe28d2e74ad1bfc0d578a6

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8

SRPM
libmicrohttpd-0.9.59-2.el8_8.1.src.rpm SHA-256: 0456cfabc4edadd7333794d004afe340ea2f963c9f79277fd0913ef8d5af3f7b
s390x
libmicrohttpd-0.9.59-2.el8_8.1.s390x.rpm SHA-256: c86f07ab7753c3e9afb83ede406cce04cf3a01afefd3119426462e6bd3831b7d
libmicrohttpd-debuginfo-0.9.59-2.el8_8.1.s390x.rpm SHA-256: 19e4b7106c1eea9032f64197ed76196a1efa4e6943e83a28d391089b355ac827
libmicrohttpd-debugsource-0.9.59-2.el8_8.1.s390x.rpm SHA-256: bffa65081bc0566039a98f43a0600805dced66d3afec67ccb8b99c084529ef1d

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8

SRPM
libmicrohttpd-0.9.59-2.el8_8.1.src.rpm SHA-256: 0456cfabc4edadd7333794d004afe340ea2f963c9f79277fd0913ef8d5af3f7b
ppc64le
libmicrohttpd-0.9.59-2.el8_8.1.ppc64le.rpm SHA-256: 7f23f8812810e4f8371563392d7252d2b019bb6c17f86d843437b1c2c6777a91
libmicrohttpd-debuginfo-0.9.59-2.el8_8.1.ppc64le.rpm SHA-256: a3559ac34b32b406fe7ce8db50455c8afa03afdb0c698ce2aef6402556609973
libmicrohttpd-debugsource-0.9.59-2.el8_8.1.ppc64le.rpm SHA-256: cb30e4e2de948703e78f92e564e6c4679bd341f9ff0c15d67a32f68679cbfc72

Red Hat Enterprise Linux Server - TUS 8.8

SRPM
libmicrohttpd-0.9.59-2.el8_8.1.src.rpm SHA-256: 0456cfabc4edadd7333794d004afe340ea2f963c9f79277fd0913ef8d5af3f7b
x86_64
libmicrohttpd-0.9.59-2.el8_8.1.i686.rpm SHA-256: 25a5294eb270a32a00a2bd1e97dc6b40c37fdc329bc0b3377f2515fc22a4ce7e
libmicrohttpd-0.9.59-2.el8_8.1.x86_64.rpm SHA-256: d0fe6a2c6886eb013d35e6fa012bda1d849f500f7c5d161776355d870cd9585c
libmicrohttpd-debuginfo-0.9.59-2.el8_8.1.i686.rpm SHA-256: cd66a67f337c06337047271d7f61cad3e1a5c4764dd08d16e39f1ecb6480c382
libmicrohttpd-debuginfo-0.9.59-2.el8_8.1.x86_64.rpm SHA-256: 564aca0aebf1705027c8f3ec00c5b110d3b009fc1b9beb9a4bb11772dcbd5d1d
libmicrohttpd-debugsource-0.9.59-2.el8_8.1.i686.rpm SHA-256: 21ee0befcd15ce0d12ec180c83e3fc3c8d838e1b8562b3a186a2bb1befab66e5
libmicrohttpd-debugsource-0.9.59-2.el8_8.1.x86_64.rpm SHA-256: e59e4977bfdfcc43e6d2a9dd067c601609173d4396fe28d2e74ad1bfc0d578a6

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8

SRPM
libmicrohttpd-0.9.59-2.el8_8.1.src.rpm SHA-256: 0456cfabc4edadd7333794d004afe340ea2f963c9f79277fd0913ef8d5af3f7b
aarch64
libmicrohttpd-0.9.59-2.el8_8.1.aarch64.rpm SHA-256: 7f34a8c58d275a88490c71f152fc4d4dff0c8b6977d6455169fdcb7d48a51eeb
libmicrohttpd-debuginfo-0.9.59-2.el8_8.1.aarch64.rpm SHA-256: 4dfa32f704aacc3ca34e6736173d1f89d44052c7da2f7e7d3f6451bdcdc78d9b
libmicrohttpd-debugsource-0.9.59-2.el8_8.1.aarch64.rpm SHA-256: eae1585522405c981d8dabcb7c15cffa7a8b06789b7c30b2bec2f80873de5ead

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8

SRPM
libmicrohttpd-0.9.59-2.el8_8.1.src.rpm SHA-256: 0456cfabc4edadd7333794d004afe340ea2f963c9f79277fd0913ef8d5af3f7b
ppc64le
libmicrohttpd-0.9.59-2.el8_8.1.ppc64le.rpm SHA-256: 7f23f8812810e4f8371563392d7252d2b019bb6c17f86d843437b1c2c6777a91
libmicrohttpd-debuginfo-0.9.59-2.el8_8.1.ppc64le.rpm SHA-256: a3559ac34b32b406fe7ce8db50455c8afa03afdb0c698ce2aef6402556609973
libmicrohttpd-debugsource-0.9.59-2.el8_8.1.ppc64le.rpm SHA-256: cb30e4e2de948703e78f92e564e6c4679bd341f9ff0c15d67a32f68679cbfc72

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8

SRPM
libmicrohttpd-0.9.59-2.el8_8.1.src.rpm SHA-256: 0456cfabc4edadd7333794d004afe340ea2f963c9f79277fd0913ef8d5af3f7b
x86_64
libmicrohttpd-0.9.59-2.el8_8.1.i686.rpm SHA-256: 25a5294eb270a32a00a2bd1e97dc6b40c37fdc329bc0b3377f2515fc22a4ce7e
libmicrohttpd-0.9.59-2.el8_8.1.x86_64.rpm SHA-256: d0fe6a2c6886eb013d35e6fa012bda1d849f500f7c5d161776355d870cd9585c
libmicrohttpd-debuginfo-0.9.59-2.el8_8.1.i686.rpm SHA-256: cd66a67f337c06337047271d7f61cad3e1a5c4764dd08d16e39f1ecb6480c382
libmicrohttpd-debuginfo-0.9.59-2.el8_8.1.x86_64.rpm SHA-256: 564aca0aebf1705027c8f3ec00c5b110d3b009fc1b9beb9a4bb11772dcbd5d1d
libmicrohttpd-debugsource-0.9.59-2.el8_8.1.i686.rpm SHA-256: 21ee0befcd15ce0d12ec180c83e3fc3c8d838e1b8562b3a186a2bb1befab66e5
libmicrohttpd-debugsource-0.9.59-2.el8_8.1.x86_64.rpm SHA-256: e59e4977bfdfcc43e6d2a9dd067c601609173d4396fe28d2e74ad1bfc0d578a6

Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 8.8

SRPM
x86_64
libmicrohttpd-debuginfo-0.9.59-2.el8_8.1.i686.rpm SHA-256: cd66a67f337c06337047271d7f61cad3e1a5c4764dd08d16e39f1ecb6480c382
libmicrohttpd-debuginfo-0.9.59-2.el8_8.1.x86_64.rpm SHA-256: 564aca0aebf1705027c8f3ec00c5b110d3b009fc1b9beb9a4bb11772dcbd5d1d
libmicrohttpd-debugsource-0.9.59-2.el8_8.1.i686.rpm SHA-256: 21ee0befcd15ce0d12ec180c83e3fc3c8d838e1b8562b3a186a2bb1befab66e5
libmicrohttpd-debugsource-0.9.59-2.el8_8.1.x86_64.rpm SHA-256: e59e4977bfdfcc43e6d2a9dd067c601609173d4396fe28d2e74ad1bfc0d578a6
libmicrohttpd-devel-0.9.59-2.el8_8.1.i686.rpm SHA-256: 56885080dc184c023e0d382d069918f9c6b3ec4843ae4b2df2311fdb676d27b3
libmicrohttpd-devel-0.9.59-2.el8_8.1.x86_64.rpm SHA-256: 8ad1ead5ba20b8648676f96cd49ab6dcae0b79819344bf9702da58b688e91d84
libmicrohttpd-doc-0.9.59-2.el8_8.1.noarch.rpm SHA-256: 450f863be07e053f44ddf377557910b0089f5bd5d8ef42297613cc10c4356632

Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 8.8

SRPM
ppc64le
libmicrohttpd-debuginfo-0.9.59-2.el8_8.1.ppc64le.rpm SHA-256: a3559ac34b32b406fe7ce8db50455c8afa03afdb0c698ce2aef6402556609973
libmicrohttpd-debugsource-0.9.59-2.el8_8.1.ppc64le.rpm SHA-256: cb30e4e2de948703e78f92e564e6c4679bd341f9ff0c15d67a32f68679cbfc72
libmicrohttpd-devel-0.9.59-2.el8_8.1.ppc64le.rpm SHA-256: 70771c81a986081fd5fc333000e7bb2d43e8627ccd53fb53c1dbe0608e1e490e
libmicrohttpd-doc-0.9.59-2.el8_8.1.noarch.rpm SHA-256: 450f863be07e053f44ddf377557910b0089f5bd5d8ef42297613cc10c4356632

Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 8.8

SRPM
s390x
libmicrohttpd-debuginfo-0.9.59-2.el8_8.1.s390x.rpm SHA-256: 19e4b7106c1eea9032f64197ed76196a1efa4e6943e83a28d391089b355ac827
libmicrohttpd-debugsource-0.9.59-2.el8_8.1.s390x.rpm SHA-256: bffa65081bc0566039a98f43a0600805dced66d3afec67ccb8b99c084529ef1d
libmicrohttpd-devel-0.9.59-2.el8_8.1.s390x.rpm SHA-256: 3dc8413a7fcbe531fc28b23e5bb5c775d267738a6f040fe4043add75125eb29c
libmicrohttpd-doc-0.9.59-2.el8_8.1.noarch.rpm SHA-256: 450f863be07e053f44ddf377557910b0089f5bd5d8ef42297613cc10c4356632

Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 8.8

SRPM
aarch64
libmicrohttpd-debuginfo-0.9.59-2.el8_8.1.aarch64.rpm SHA-256: 4dfa32f704aacc3ca34e6736173d1f89d44052c7da2f7e7d3f6451bdcdc78d9b
libmicrohttpd-debugsource-0.9.59-2.el8_8.1.aarch64.rpm SHA-256: eae1585522405c981d8dabcb7c15cffa7a8b06789b7c30b2bec2f80873de5ead
libmicrohttpd-devel-0.9.59-2.el8_8.1.aarch64.rpm SHA-256: da1616b2850ca220ef2f483edac8305218e384d6417285ef7607234e94acbb3c
libmicrohttpd-doc-0.9.59-2.el8_8.1.noarch.rpm SHA-256: 450f863be07e053f44ddf377557910b0089f5bd5d8ef42297613cc10c4356632

Red Hat 安全团队联络方式为 secalert@redhat.com。 更多联络细节请参考 https://access.redhat.com/security/team/contact/