Security Advisory Moderate: httpd security update

Advisory: RHSA-2014:0370-1
Type: Security Advisory
Severity: Moderate
Issued on: 2014-04-03
Last updated on: 2014-04-03
Affected Products: Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux HPC Node (v. 6)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Server AUS (v. 6.5)
Red Hat Enterprise Linux Server EUS (v. 6.5.z)
Red Hat Enterprise Linux Workstation (v. 6)
CVEs (cve.mitre.org): CVE-2013-6438
CVE-2014-0098

Details

Updated httpd packages that fix two security issues are now available for
Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having Moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

The httpd packages provide the Apache HTTP Server, a powerful, efficient,
and extensible web server.

It was found that the mod_dav module did not correctly strip leading white
space from certain elements in a parsed XML. In certain httpd
configurations that use the mod_dav module (for example when using the
mod_dav_svn module), a remote attacker could send a specially crafted DAV
request that would cause the httpd child process to crash or, possibly,
allow the attacker to execute arbitrary code with the privileges of the
"apache" user. (CVE-2013-6438)

A buffer over-read flaw was found in the httpd mod_log_config module.
In configurations where cookie logging is enabled (on Red Hat Enterprise
Linux it is disabled by default), a remote attacker could use this flaw to
crash the httpd child process via an HTTP request with a malformed cookie
header. (CVE-2014-0098)

All httpd users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. After installing the
updated packages, the httpd daemon will be restarted automatically.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258

Updated packages

Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
httpd-2.2.15-30.el6_5.src.rpm
File outdated by:  RHSA-2015:1668
    MD5: 098fbc0ae0d30ea915c3925195d745de
SHA-256: 18f8c1b95eb274f2f9ea9f9581f4ff24cbfa6379a2e21dee1cfe040658760891
 
IA-32:
httpd-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 47433a12f5aff8259c7e8d2ba257c577
SHA-256: 51db7b7f313ff44a2860ecba2a2346e017f609bfb517c7e11c5c229c27b37470
httpd-debuginfo-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 0b64e4ad531724f42bc37d2aee6bf07e
SHA-256: ce916126a6f9d88d1ccd44a85c70e7b19c6347a6126dbf6641f530a1baaf6e1f
httpd-devel-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 6d4055a6f47a4122dbbc91b4866b0872
SHA-256: b4f9996d640cf0df1e24be62d0d91b6312a940c523b1830ee16a39c00f17556d
httpd-manual-2.2.15-30.el6_5.noarch.rpm
File outdated by:  RHSA-2015:1668
    MD5: cdc65d5eb667703cce44bbc27e5dd13b
SHA-256: 18610ca406b87f9e2db51ce2b5df7aba6ddee5011003df740902ce79d6f99f62
httpd-tools-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 89273e1eab8c10057debcdc1163b5a4b
SHA-256: 16ff0b1d47a8c779d51a7a6639858e3c1afc7670de3052a4c32353d2f26c3235
mod_ssl-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 3feced84ff4879636f589200d96d223a
SHA-256: 040ddabe23368ab66eb5b2f38a6abb705004008c9388105e839f333cb899bf7e
 
x86_64:
httpd-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: 8b0fc47e4daa1042a88954375d450de3
SHA-256: adcf0c97ce9350dced67fcf6cb3af72f4ce999201d16e38f50147674cfd7a69d
httpd-debuginfo-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 0b64e4ad531724f42bc37d2aee6bf07e
SHA-256: ce916126a6f9d88d1ccd44a85c70e7b19c6347a6126dbf6641f530a1baaf6e1f
httpd-debuginfo-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: fa4fe226b2d3a74629ef0eb58905c917
SHA-256: 1fc37646b414a9473927d60f27d201b2775e84a69a6032cb76e30c6cddeb93ef
httpd-devel-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 6d4055a6f47a4122dbbc91b4866b0872
SHA-256: b4f9996d640cf0df1e24be62d0d91b6312a940c523b1830ee16a39c00f17556d
httpd-devel-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: d11c0c2e5403962590d91c44ee9dd94a
SHA-256: a424c2121d77696da71de0dd2875087c621ce94c50ca7279ab8f61738b1a12a5
httpd-manual-2.2.15-30.el6_5.noarch.rpm
File outdated by:  RHSA-2015:1668
    MD5: cdc65d5eb667703cce44bbc27e5dd13b
SHA-256: 18610ca406b87f9e2db51ce2b5df7aba6ddee5011003df740902ce79d6f99f62
httpd-tools-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: 165e6ec8fd573f5311567c5a42dcd123
SHA-256: 432167a2d172b680d43d6cfe56328ad5990421cb7c41c0a13be6e3331d94e77e
mod_ssl-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: 43dd8aa111dceddd18044bab8f693122
SHA-256: d2a3771e97c122dfebf985b05e889302eb24b3fb7d9f9cad0fe635f7bcae1082
 
Red Hat Enterprise Linux HPC Node (v. 6)

SRPMS:
httpd-2.2.15-30.el6_5.src.rpm
File outdated by:  RHSA-2015:1668
    MD5: 098fbc0ae0d30ea915c3925195d745de
SHA-256: 18f8c1b95eb274f2f9ea9f9581f4ff24cbfa6379a2e21dee1cfe040658760891
 
x86_64:
httpd-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: 8b0fc47e4daa1042a88954375d450de3
SHA-256: adcf0c97ce9350dced67fcf6cb3af72f4ce999201d16e38f50147674cfd7a69d
httpd-debuginfo-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 0b64e4ad531724f42bc37d2aee6bf07e
SHA-256: ce916126a6f9d88d1ccd44a85c70e7b19c6347a6126dbf6641f530a1baaf6e1f
httpd-debuginfo-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: fa4fe226b2d3a74629ef0eb58905c917
SHA-256: 1fc37646b414a9473927d60f27d201b2775e84a69a6032cb76e30c6cddeb93ef
httpd-devel-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 6d4055a6f47a4122dbbc91b4866b0872
SHA-256: b4f9996d640cf0df1e24be62d0d91b6312a940c523b1830ee16a39c00f17556d
httpd-devel-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: d11c0c2e5403962590d91c44ee9dd94a
SHA-256: a424c2121d77696da71de0dd2875087c621ce94c50ca7279ab8f61738b1a12a5
httpd-manual-2.2.15-30.el6_5.noarch.rpm
File outdated by:  RHSA-2015:1668
    MD5: cdc65d5eb667703cce44bbc27e5dd13b
SHA-256: 18610ca406b87f9e2db51ce2b5df7aba6ddee5011003df740902ce79d6f99f62
httpd-tools-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: 165e6ec8fd573f5311567c5a42dcd123
SHA-256: 432167a2d172b680d43d6cfe56328ad5990421cb7c41c0a13be6e3331d94e77e
mod_ssl-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: 43dd8aa111dceddd18044bab8f693122
SHA-256: d2a3771e97c122dfebf985b05e889302eb24b3fb7d9f9cad0fe635f7bcae1082
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
httpd-2.2.15-30.el6_5.src.rpm
File outdated by:  RHSA-2015:1668
    MD5: 098fbc0ae0d30ea915c3925195d745de
SHA-256: 18f8c1b95eb274f2f9ea9f9581f4ff24cbfa6379a2e21dee1cfe040658760891
 
IA-32:
httpd-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 47433a12f5aff8259c7e8d2ba257c577
SHA-256: 51db7b7f313ff44a2860ecba2a2346e017f609bfb517c7e11c5c229c27b37470
httpd-debuginfo-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 0b64e4ad531724f42bc37d2aee6bf07e
SHA-256: ce916126a6f9d88d1ccd44a85c70e7b19c6347a6126dbf6641f530a1baaf6e1f
httpd-devel-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 6d4055a6f47a4122dbbc91b4866b0872
SHA-256: b4f9996d640cf0df1e24be62d0d91b6312a940c523b1830ee16a39c00f17556d
httpd-manual-2.2.15-30.el6_5.noarch.rpm
File outdated by:  RHSA-2015:1668
    MD5: cdc65d5eb667703cce44bbc27e5dd13b
SHA-256: 18610ca406b87f9e2db51ce2b5df7aba6ddee5011003df740902ce79d6f99f62
httpd-tools-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 89273e1eab8c10057debcdc1163b5a4b
SHA-256: 16ff0b1d47a8c779d51a7a6639858e3c1afc7670de3052a4c32353d2f26c3235
mod_ssl-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 3feced84ff4879636f589200d96d223a
SHA-256: 040ddabe23368ab66eb5b2f38a6abb705004008c9388105e839f333cb899bf7e
 
PPC:
httpd-2.2.15-30.el6_5.ppc64.rpm
File outdated by:  RHSA-2015:1668
    MD5: 42f6594ff1d1865235d3dc2ea627000d
SHA-256: bff2ebe4203c9b6733b45fceb4076ec39ce00f2f692571c2e6b96d0c790d02aa
httpd-debuginfo-2.2.15-30.el6_5.ppc.rpm
File outdated by:  RHSA-2015:1668
    MD5: d763f3e45cac429823789ab4f3e66b76
SHA-256: c02f9f3750e9c4a1d57877587cc68263bd94537cc66cb3b8fe7232ae1dd51845
httpd-debuginfo-2.2.15-30.el6_5.ppc64.rpm
File outdated by:  RHSA-2015:1668
    MD5: a8ecb03336ad6480dfe39e322395a508
SHA-256: e7a0f99e8cc4b5af334c25750641441eec636f799f8bae3d3ccf6ff53a9ab493
httpd-devel-2.2.15-30.el6_5.ppc.rpm
File outdated by:  RHSA-2015:1668
    MD5: 6dc837e3f25a01ea3b052aabc5a264e9
SHA-256: 940508066d5805d1e0439f18e7f50e295286925ae8990046f627514f6b659a8f
httpd-devel-2.2.15-30.el6_5.ppc64.rpm
File outdated by:  RHSA-2015:1668
    MD5: c29652bb3fa05f04f88aa5da092c2d9a
SHA-256: fc330579779a96dd6684761d600390f02a793d01ae7c792afd48e0d6a276726c
httpd-manual-2.2.15-30.el6_5.noarch.rpm
File outdated by:  RHSA-2015:1668
    MD5: cdc65d5eb667703cce44bbc27e5dd13b
SHA-256: 18610ca406b87f9e2db51ce2b5df7aba6ddee5011003df740902ce79d6f99f62
httpd-tools-2.2.15-30.el6_5.ppc64.rpm
File outdated by:  RHSA-2015:1668
    MD5: cf8a5ddf22064784314ca2b4d254fb65
SHA-256: 4327fbaf9a822632a8fe7fd1583ed1d5b6ab626b92a64cc901629eeb0d37b350
mod_ssl-2.2.15-30.el6_5.ppc64.rpm
File outdated by:  RHSA-2015:1668
    MD5: 7db8c1e428ec648afa806581b8a1325b
SHA-256: fb8fdf69fc8e221646624f080d398f63405d66edc77a8dad630995a865cc8e5e
 
s390x:
httpd-2.2.15-30.el6_5.s390x.rpm
File outdated by:  RHSA-2015:1668
    MD5: c6222e194fac2177e4c902fad9ff7584
SHA-256: 511fd51646f089f9c9d4d7a4014683a833390471e0d483bb6955b25af2ad6bc6
httpd-debuginfo-2.2.15-30.el6_5.s390.rpm
File outdated by:  RHSA-2015:1668
    MD5: b7f0613b2f2c665db2e0d7fb7f0df745
SHA-256: 1a4d4a74ffad0c68328ac666df9196e6d85aafed4d8310cac2ce6892d16414a9
httpd-debuginfo-2.2.15-30.el6_5.s390x.rpm
File outdated by:  RHSA-2015:1668
    MD5: 3e905230c7b35af99df1826ec0831b37
SHA-256: 0681864327bf2051110f8285c09ae77d04e360048b3f5345759b9681696c4bd8
httpd-devel-2.2.15-30.el6_5.s390.rpm
File outdated by:  RHSA-2015:1668
    MD5: 97457f5557f11115a06419e33fe4455c
SHA-256: e6562c32d90681a40a15b993f925ee9fd99f2e74983e888a0569c6bd71d50c2e
httpd-devel-2.2.15-30.el6_5.s390x.rpm
File outdated by:  RHSA-2015:1668
    MD5: b7604aef2f84f3a769ca75707da5e20d
SHA-256: c8b376222b793a6c7372f500f12dab0f06bb7cf61b830970d81f415cef887ce1
httpd-manual-2.2.15-30.el6_5.noarch.rpm
File outdated by:  RHSA-2015:1668
    MD5: cdc65d5eb667703cce44bbc27e5dd13b
SHA-256: 18610ca406b87f9e2db51ce2b5df7aba6ddee5011003df740902ce79d6f99f62
httpd-tools-2.2.15-30.el6_5.s390x.rpm
File outdated by:  RHSA-2015:1668
    MD5: 50710ec65e672c739249cf6fd79246fa
SHA-256: d0db71cb6a11a9228ece8a6d36d7715a091ac77c54445b4ca2b2279f02a446f7
mod_ssl-2.2.15-30.el6_5.s390x.rpm
File outdated by:  RHSA-2015:1668
    MD5: 9ad351b69765a53fac424bf8c13fb18a
SHA-256: e817bce44e6256989daac30b96c51af1102bf637b8224475589d5dd4d10c6a6c
 
x86_64:
httpd-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: 8b0fc47e4daa1042a88954375d450de3
SHA-256: adcf0c97ce9350dced67fcf6cb3af72f4ce999201d16e38f50147674cfd7a69d
httpd-debuginfo-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 0b64e4ad531724f42bc37d2aee6bf07e
SHA-256: ce916126a6f9d88d1ccd44a85c70e7b19c6347a6126dbf6641f530a1baaf6e1f
httpd-debuginfo-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: fa4fe226b2d3a74629ef0eb58905c917
SHA-256: 1fc37646b414a9473927d60f27d201b2775e84a69a6032cb76e30c6cddeb93ef
httpd-devel-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 6d4055a6f47a4122dbbc91b4866b0872
SHA-256: b4f9996d640cf0df1e24be62d0d91b6312a940c523b1830ee16a39c00f17556d
httpd-devel-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: d11c0c2e5403962590d91c44ee9dd94a
SHA-256: a424c2121d77696da71de0dd2875087c621ce94c50ca7279ab8f61738b1a12a5
httpd-manual-2.2.15-30.el6_5.noarch.rpm
File outdated by:  RHSA-2015:1668
    MD5: cdc65d5eb667703cce44bbc27e5dd13b
SHA-256: 18610ca406b87f9e2db51ce2b5df7aba6ddee5011003df740902ce79d6f99f62
httpd-tools-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: 165e6ec8fd573f5311567c5a42dcd123
SHA-256: 432167a2d172b680d43d6cfe56328ad5990421cb7c41c0a13be6e3331d94e77e
mod_ssl-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: 43dd8aa111dceddd18044bab8f693122
SHA-256: d2a3771e97c122dfebf985b05e889302eb24b3fb7d9f9cad0fe635f7bcae1082
 
Red Hat Enterprise Linux Server AUS (v. 6.5)

SRPMS:
httpd-2.2.15-30.el6_5.src.rpm
File outdated by:  RHSA-2015:1668
    MD5: 098fbc0ae0d30ea915c3925195d745de
SHA-256: 18f8c1b95eb274f2f9ea9f9581f4ff24cbfa6379a2e21dee1cfe040658760891
 
x86_64:
httpd-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2014:0920
    MD5: 8b0fc47e4daa1042a88954375d450de3
SHA-256: adcf0c97ce9350dced67fcf6cb3af72f4ce999201d16e38f50147674cfd7a69d
httpd-debuginfo-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2014:0920
    MD5: 0b64e4ad531724f42bc37d2aee6bf07e
SHA-256: ce916126a6f9d88d1ccd44a85c70e7b19c6347a6126dbf6641f530a1baaf6e1f
httpd-debuginfo-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2014:0920
    MD5: fa4fe226b2d3a74629ef0eb58905c917
SHA-256: 1fc37646b414a9473927d60f27d201b2775e84a69a6032cb76e30c6cddeb93ef
httpd-devel-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2014:0920
    MD5: 6d4055a6f47a4122dbbc91b4866b0872
SHA-256: b4f9996d640cf0df1e24be62d0d91b6312a940c523b1830ee16a39c00f17556d
httpd-devel-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2014:0920
    MD5: d11c0c2e5403962590d91c44ee9dd94a
SHA-256: a424c2121d77696da71de0dd2875087c621ce94c50ca7279ab8f61738b1a12a5
httpd-manual-2.2.15-30.el6_5.noarch.rpm
File outdated by:  RHSA-2014:0920
    MD5: cdc65d5eb667703cce44bbc27e5dd13b
SHA-256: 18610ca406b87f9e2db51ce2b5df7aba6ddee5011003df740902ce79d6f99f62
httpd-tools-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2014:0920
    MD5: 165e6ec8fd573f5311567c5a42dcd123
SHA-256: 432167a2d172b680d43d6cfe56328ad5990421cb7c41c0a13be6e3331d94e77e
mod_ssl-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2014:0920
    MD5: 43dd8aa111dceddd18044bab8f693122
SHA-256: d2a3771e97c122dfebf985b05e889302eb24b3fb7d9f9cad0fe635f7bcae1082
 
Red Hat Enterprise Linux Server EUS (v. 6.5.z)

SRPMS:
httpd-2.2.15-30.el6_5.src.rpm
File outdated by:  RHSA-2015:1668
    MD5: 098fbc0ae0d30ea915c3925195d745de
SHA-256: 18f8c1b95eb274f2f9ea9f9581f4ff24cbfa6379a2e21dee1cfe040658760891
 
IA-32:
httpd-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2014:0920
    MD5: 47433a12f5aff8259c7e8d2ba257c577
SHA-256: 51db7b7f313ff44a2860ecba2a2346e017f609bfb517c7e11c5c229c27b37470
httpd-debuginfo-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2014:0920
    MD5: 0b64e4ad531724f42bc37d2aee6bf07e
SHA-256: ce916126a6f9d88d1ccd44a85c70e7b19c6347a6126dbf6641f530a1baaf6e1f
httpd-devel-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2014:0920
    MD5: 6d4055a6f47a4122dbbc91b4866b0872
SHA-256: b4f9996d640cf0df1e24be62d0d91b6312a940c523b1830ee16a39c00f17556d
httpd-manual-2.2.15-30.el6_5.noarch.rpm
File outdated by:  RHSA-2014:0920
    MD5: cdc65d5eb667703cce44bbc27e5dd13b
SHA-256: 18610ca406b87f9e2db51ce2b5df7aba6ddee5011003df740902ce79d6f99f62
httpd-tools-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2014:0920
    MD5: 89273e1eab8c10057debcdc1163b5a4b
SHA-256: 16ff0b1d47a8c779d51a7a6639858e3c1afc7670de3052a4c32353d2f26c3235
mod_ssl-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2014:0920
    MD5: 3feced84ff4879636f589200d96d223a
SHA-256: 040ddabe23368ab66eb5b2f38a6abb705004008c9388105e839f333cb899bf7e
 
PPC:
httpd-2.2.15-30.el6_5.ppc64.rpm
File outdated by:  RHSA-2014:0920
    MD5: 42f6594ff1d1865235d3dc2ea627000d
SHA-256: bff2ebe4203c9b6733b45fceb4076ec39ce00f2f692571c2e6b96d0c790d02aa
httpd-debuginfo-2.2.15-30.el6_5.ppc.rpm
File outdated by:  RHSA-2014:0920
    MD5: d763f3e45cac429823789ab4f3e66b76
SHA-256: c02f9f3750e9c4a1d57877587cc68263bd94537cc66cb3b8fe7232ae1dd51845
httpd-debuginfo-2.2.15-30.el6_5.ppc64.rpm
File outdated by:  RHSA-2014:0920
    MD5: a8ecb03336ad6480dfe39e322395a508
SHA-256: e7a0f99e8cc4b5af334c25750641441eec636f799f8bae3d3ccf6ff53a9ab493
httpd-devel-2.2.15-30.el6_5.ppc.rpm
File outdated by:  RHSA-2014:0920
    MD5: 6dc837e3f25a01ea3b052aabc5a264e9
SHA-256: 940508066d5805d1e0439f18e7f50e295286925ae8990046f627514f6b659a8f
httpd-devel-2.2.15-30.el6_5.ppc64.rpm
File outdated by:  RHSA-2014:0920
    MD5: c29652bb3fa05f04f88aa5da092c2d9a
SHA-256: fc330579779a96dd6684761d600390f02a793d01ae7c792afd48e0d6a276726c
httpd-manual-2.2.15-30.el6_5.noarch.rpm
File outdated by:  RHSA-2014:0920
    MD5: cdc65d5eb667703cce44bbc27e5dd13b
SHA-256: 18610ca406b87f9e2db51ce2b5df7aba6ddee5011003df740902ce79d6f99f62
httpd-tools-2.2.15-30.el6_5.ppc64.rpm
File outdated by:  RHSA-2014:0920
    MD5: cf8a5ddf22064784314ca2b4d254fb65
SHA-256: 4327fbaf9a822632a8fe7fd1583ed1d5b6ab626b92a64cc901629eeb0d37b350
mod_ssl-2.2.15-30.el6_5.ppc64.rpm
File outdated by:  RHSA-2014:0920
    MD5: 7db8c1e428ec648afa806581b8a1325b
SHA-256: fb8fdf69fc8e221646624f080d398f63405d66edc77a8dad630995a865cc8e5e
 
s390x:
httpd-2.2.15-30.el6_5.s390x.rpm
File outdated by:  RHSA-2014:0920
    MD5: c6222e194fac2177e4c902fad9ff7584
SHA-256: 511fd51646f089f9c9d4d7a4014683a833390471e0d483bb6955b25af2ad6bc6
httpd-debuginfo-2.2.15-30.el6_5.s390.rpm
File outdated by:  RHSA-2014:0920
    MD5: b7f0613b2f2c665db2e0d7fb7f0df745
SHA-256: 1a4d4a74ffad0c68328ac666df9196e6d85aafed4d8310cac2ce6892d16414a9
httpd-debuginfo-2.2.15-30.el6_5.s390x.rpm
File outdated by:  RHSA-2014:0920
    MD5: 3e905230c7b35af99df1826ec0831b37
SHA-256: 0681864327bf2051110f8285c09ae77d04e360048b3f5345759b9681696c4bd8
httpd-devel-2.2.15-30.el6_5.s390.rpm
File outdated by:  RHSA-2014:0920
    MD5: 97457f5557f11115a06419e33fe4455c
SHA-256: e6562c32d90681a40a15b993f925ee9fd99f2e74983e888a0569c6bd71d50c2e
httpd-devel-2.2.15-30.el6_5.s390x.rpm
File outdated by:  RHSA-2014:0920
    MD5: b7604aef2f84f3a769ca75707da5e20d
SHA-256: c8b376222b793a6c7372f500f12dab0f06bb7cf61b830970d81f415cef887ce1
httpd-manual-2.2.15-30.el6_5.noarch.rpm
File outdated by:  RHSA-2014:0920
    MD5: cdc65d5eb667703cce44bbc27e5dd13b
SHA-256: 18610ca406b87f9e2db51ce2b5df7aba6ddee5011003df740902ce79d6f99f62
httpd-tools-2.2.15-30.el6_5.s390x.rpm
File outdated by:  RHSA-2014:0920
    MD5: 50710ec65e672c739249cf6fd79246fa
SHA-256: d0db71cb6a11a9228ece8a6d36d7715a091ac77c54445b4ca2b2279f02a446f7
mod_ssl-2.2.15-30.el6_5.s390x.rpm
File outdated by:  RHSA-2014:0920
    MD5: 9ad351b69765a53fac424bf8c13fb18a
SHA-256: e817bce44e6256989daac30b96c51af1102bf637b8224475589d5dd4d10c6a6c
 
x86_64:
httpd-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2014:0920
    MD5: 8b0fc47e4daa1042a88954375d450de3
SHA-256: adcf0c97ce9350dced67fcf6cb3af72f4ce999201d16e38f50147674cfd7a69d
httpd-debuginfo-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2014:0920
    MD5: 0b64e4ad531724f42bc37d2aee6bf07e
SHA-256: ce916126a6f9d88d1ccd44a85c70e7b19c6347a6126dbf6641f530a1baaf6e1f
httpd-debuginfo-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2014:0920
    MD5: fa4fe226b2d3a74629ef0eb58905c917
SHA-256: 1fc37646b414a9473927d60f27d201b2775e84a69a6032cb76e30c6cddeb93ef
httpd-devel-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2014:0920
    MD5: 6d4055a6f47a4122dbbc91b4866b0872
SHA-256: b4f9996d640cf0df1e24be62d0d91b6312a940c523b1830ee16a39c00f17556d
httpd-devel-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2014:0920
    MD5: d11c0c2e5403962590d91c44ee9dd94a
SHA-256: a424c2121d77696da71de0dd2875087c621ce94c50ca7279ab8f61738b1a12a5
httpd-manual-2.2.15-30.el6_5.noarch.rpm
File outdated by:  RHSA-2014:0920
    MD5: cdc65d5eb667703cce44bbc27e5dd13b
SHA-256: 18610ca406b87f9e2db51ce2b5df7aba6ddee5011003df740902ce79d6f99f62
httpd-tools-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2014:0920
    MD5: 165e6ec8fd573f5311567c5a42dcd123
SHA-256: 432167a2d172b680d43d6cfe56328ad5990421cb7c41c0a13be6e3331d94e77e
mod_ssl-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2014:0920
    MD5: 43dd8aa111dceddd18044bab8f693122
SHA-256: d2a3771e97c122dfebf985b05e889302eb24b3fb7d9f9cad0fe635f7bcae1082
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
httpd-2.2.15-30.el6_5.src.rpm
File outdated by:  RHSA-2015:1668
    MD5: 098fbc0ae0d30ea915c3925195d745de
SHA-256: 18f8c1b95eb274f2f9ea9f9581f4ff24cbfa6379a2e21dee1cfe040658760891
 
IA-32:
httpd-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 47433a12f5aff8259c7e8d2ba257c577
SHA-256: 51db7b7f313ff44a2860ecba2a2346e017f609bfb517c7e11c5c229c27b37470
httpd-debuginfo-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 0b64e4ad531724f42bc37d2aee6bf07e
SHA-256: ce916126a6f9d88d1ccd44a85c70e7b19c6347a6126dbf6641f530a1baaf6e1f
httpd-devel-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 6d4055a6f47a4122dbbc91b4866b0872
SHA-256: b4f9996d640cf0df1e24be62d0d91b6312a940c523b1830ee16a39c00f17556d
httpd-manual-2.2.15-30.el6_5.noarch.rpm
File outdated by:  RHSA-2015:1668
    MD5: cdc65d5eb667703cce44bbc27e5dd13b
SHA-256: 18610ca406b87f9e2db51ce2b5df7aba6ddee5011003df740902ce79d6f99f62
httpd-tools-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 89273e1eab8c10057debcdc1163b5a4b
SHA-256: 16ff0b1d47a8c779d51a7a6639858e3c1afc7670de3052a4c32353d2f26c3235
mod_ssl-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 3feced84ff4879636f589200d96d223a
SHA-256: 040ddabe23368ab66eb5b2f38a6abb705004008c9388105e839f333cb899bf7e
 
x86_64:
httpd-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: 8b0fc47e4daa1042a88954375d450de3
SHA-256: adcf0c97ce9350dced67fcf6cb3af72f4ce999201d16e38f50147674cfd7a69d
httpd-debuginfo-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 0b64e4ad531724f42bc37d2aee6bf07e
SHA-256: ce916126a6f9d88d1ccd44a85c70e7b19c6347a6126dbf6641f530a1baaf6e1f
httpd-debuginfo-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: fa4fe226b2d3a74629ef0eb58905c917
SHA-256: 1fc37646b414a9473927d60f27d201b2775e84a69a6032cb76e30c6cddeb93ef
httpd-devel-2.2.15-30.el6_5.i686.rpm
File outdated by:  RHSA-2015:1668
    MD5: 6d4055a6f47a4122dbbc91b4866b0872
SHA-256: b4f9996d640cf0df1e24be62d0d91b6312a940c523b1830ee16a39c00f17556d
httpd-devel-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: d11c0c2e5403962590d91c44ee9dd94a
SHA-256: a424c2121d77696da71de0dd2875087c621ce94c50ca7279ab8f61738b1a12a5
httpd-manual-2.2.15-30.el6_5.noarch.rpm
File outdated by:  RHSA-2015:1668
    MD5: cdc65d5eb667703cce44bbc27e5dd13b
SHA-256: 18610ca406b87f9e2db51ce2b5df7aba6ddee5011003df740902ce79d6f99f62
httpd-tools-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: 165e6ec8fd573f5311567c5a42dcd123
SHA-256: 432167a2d172b680d43d6cfe56328ad5990421cb7c41c0a13be6e3331d94e77e
mod_ssl-2.2.15-30.el6_5.x86_64.rpm
File outdated by:  RHSA-2015:1668
    MD5: 43dd8aa111dceddd18044bab8f693122
SHA-256: d2a3771e97c122dfebf985b05e889302eb24b3fb7d9f9cad0fe635f7bcae1082
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1077867 - CVE-2013-6438 httpd: mod_dav denial of service via crafted DAV WRITE request
1077871 - CVE-2014-0098 httpd: mod_log_config does not properly handle logging certain cookies resulting in DoS


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/