Release date:
2026-06-13 12:15:50 UTC
Description:
- CVE-2026-42536: mod_xml2enc: fix buffer accounting in fix_skipto
- CVE-2026-29167: util_ldap: deep-copy client certs into connection pool
- CVE-2026-42535: mod_dav_fs: deny access to the state directory
Updated packages:
-
httpd-2.4.62-4.el9_6.4.tuxcare.els6.x86_64.rpm
sha:060340a61f2353c8b83d4fce8d5751274bcd620e78faa5379b29e5b082966bf9
-
httpd-core-2.4.62-4.el9_6.4.tuxcare.els6.x86_64.rpm
sha:3d63af12d85a97f6e095bdc76d696e6553646e176f2b6bbf2b485b9942d25a53
-
httpd-devel-2.4.62-4.el9_6.4.tuxcare.els6.x86_64.rpm
sha:decad00e4f17b9415ccb5fc8d2cdb05903156d41694aa6aa582504d9a6c5cea9
-
httpd-filesystem-2.4.62-4.el9_6.4.tuxcare.els6.noarch.rpm
sha:a935d8d494813b4ce57a3c2913b6061f58e1d62b0b82c57f58f22a08f1f162e4
-
httpd-manual-2.4.62-4.el9_6.4.tuxcare.els6.noarch.rpm
sha:0cbf1112446ea9cab27883d2c389d6910c66789824cb79dd28cfb0b4a85d203b
-
httpd-tools-2.4.62-4.el9_6.4.tuxcare.els6.x86_64.rpm
sha:57b8f47845f2deb4ed42fdaae51e6e23977f26b147229e3a46f8607c1b2ab961
-
mod_ldap-2.4.62-4.el9_6.4.tuxcare.els6.x86_64.rpm
sha:3085f8d9000b0a0e7b35b586bace1768627683de0df1a3483da4c8d78e5fcb63
-
mod_lua-2.4.62-4.el9_6.4.tuxcare.els6.x86_64.rpm
sha:134aa577f0d1275510e36aaa286b232b61fe433853d40c19af46ac89a35fc99b
-
mod_proxy_html-2.4.62-4.el9_6.4.tuxcare.els6.x86_64.rpm
sha:90defb19b5009e6a7c024bbfa1ff7fc606979db20073f65b4238872ce2e70fdb
-
mod_session-2.4.62-4.el9_6.4.tuxcare.els6.x86_64.rpm
sha:492cdd2f91fe6625d1d621924ebdb4422e49b004687730ce74c6d463fb80fcb8
-
mod_ssl-2.4.62-4.el9_6.4.tuxcare.els6.x86_64.rpm
sha:7a11978fc5cde5fc427d6e891f66b147f7d8707e5e174c9df6d9d642c8a6c415
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
