thr3ads.net - CentOS - [CentOS] CVE-2019-0211 CentOS SCL httpd24 patches [Apr 2019]

If this information is useful, please help other people find it:
Share via:

Vesselin Markov

2019-Apr-16 08:05 UTC

[CentOS] CVE-2019-0211 CentOS SCL httpd24 patches

Hi folks,

On April 11th 2019 RedHat has responded to 

httpd: privilege escalation from modules scripts (CVE-2019-0211)
mod_auth_mellon: authentication bypass in ECP flow (CVE-2019-3878)

building a patched Apache http24 version for Software Collections -

https://access.redhat.com/errata/RHSA-2019:0746

When can we expect this will be done for the SCL CentOS 7?

Regards,

Vesselin

Johnny Hughes

2019-Apr-16 18:11 UTC

head link

[CentOS] CVE-2019-0211 CentOS SCL httpd24 patches

On 4/16/19 3:05 AM, Vesselin Markov wrote:> Hi folks,
> 
> On April 11th 2019 RedHat has responded to 
> 
> httpd: privilege escalation from modules scripts (CVE-2019-0211)
> mod_auth_mellon: authentication bypass in ECP flow (CVE-2019-3878)
> 
> building a patched Apache http24 version for Software Collections -
> 
> https://access.redhat.com/errata/RHSA-2019:0746
> 
> When can we expect this will be done for the SCL CentOS 7?
I am not sure of the answer, but I sent this to the CentOS-Devel mail
list to ask:

https://lists.centos.org/pipermail/centos-devel/2019-April/017334.html

Thanks,
Johnny Hughes

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: OpenPGP digital signature
URL:
<http://lists.centos.org/pipermail/centos/attachments/20190416/42f21566/attachment-0002.sig>

Maybe Matching Threads

Search for more reasonably related threads

CentOS - Apr 2019 - CVE-2019-0211 CentOS SCL httpd24 patches

[CentOS] CVE-2019-0211 CentOS SCL httpd24 patches

[CentOS] CVE-2019-0211 CentOS SCL httpd24 patches

Maybe Matching Threads