FEDORA-2017-a52f252521

security update in Fedora 26 for httpd

Status: stable 2 years ago

This is a release fixing a security fix applied upstream, known as "optionsbleed" in popular parlance.

It is relevant for hosted and co-located instances of Fedora (and why wouldn't you?).

How to install

sudo dnf upgrade --advisory=FEDORA-2017-a52f252521

Comments 8

This update has been submitted for testing by kanarip.

2 years ago

This update has been pushed to testing.

2 years ago

bojan 2 years ago

Works here.

karma: +1

imabug 2 years ago

Seems to be working here

karma: +1

nb 2 years ago

wfm

karma: +1

This update has been submitted for stable by bodhi.

2 years ago

nathan95 2 years ago

ok for me

karma: +1

This update has been pushed to stable.

2 years ago

Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

Text fields in Bodhi2 support an enhanced version of markdown. This is a cheat sheet for your reference.

You can do headers by underlining or by prefixing with the # character:

This is an H1
=============

This is an H2
-------------

# This is another H1

## This is another H2

You can do blockquotes using email-style prefixes with the > character:

> This is a quotation
> over many lines
> > and it can be nested(!)

Lists work like you'd expect, by prefixing with any of the *, +, or - characters:

Check out this list:

* This
* is
* a list..

You need a blank line between a paragraph and the start of a list for the renderer to pick up on it.

Emphasis can be added like this:

*italics*
_italics_
**bold**
__bold__

You can save your code references from being misinterpreted as emphasis by surrounding them with backtick characters (`):

Use `the_best_function()` and _not_ that crummy one.

Links look like this:

[text](http://getfedora.org)

..but we also support bare links if you just provide a URL.

You can create code blocks by indenting every line of the block by at least 4 spaces or 1 tab.

Here is a code block:

    for i in range(4):
        print i
    print "done."

You can reference bug reports by simply writing something of the form tracker#ticketid.

This fixes PHP#1234 and Python#2345

... we will automatically generate links to the tickets in the appropriate trackers in place.

The supported bug tracker prefixes are: (these are all case-insensitive)

Fedora, RHBZ and RH (all point to the Red Hat Bugzilla)
GNOME
KDE
PEAR
PHP
Python

And you can refer to other users by prefixing their username with the @ symbol.

Thanks @mattdm!

This will generate a link to their profile, but it won't necessarily send them a notification unless they have a special FMN rule set up to catch it.

Lastly, you can embed inline images with syntax like this:

![Alt text](/path/to/img.jpg)

-1

Feedback Guidelines

Is the update generally functional? (karma)

You need to be logged in to add karma!

#1490344 CVE-2017-9798 httpd: Use-after-free by limiting unregistered HTTP method (Optionsbleed)

Test Case HTTPd

Content Type

RPM

Status

stable

Test Gating

Submitted by

kanarip

Update Type

security

Update Severity

low

Karma

+4
stable threshold: 3
unstable threshold: -3

Autopush

Enabled

Dates

submitted	2 years ago
in testing	2 years ago
in stable	2 years ago

Related Bugs 1


0	0	#1490344 CVE-2017-9798 httpd: Use-after-free by limiting unregistered HTTP method (Optionsbleed)

httpd-2.4.27-3.fc26

Automated Test Results

Test Cases


0	0	Test Case HTTPd

FEDORA-2017-a52f252521

security update in Fedora 26 for httpd

How to install

Comments 8

Add Comment & Feedback Toggle Preview

Related Bugs 1

Automated Test Results

Test Cases

Add Comment & Feedback
Toggle Preview