Apache httpd vulnerabilities (CVE-2017-3167, 3169, 7668, 7679)
Apache httpd vulnerabilities (CVE-2017-3167, 3169, 7668, 7679)
There are vulnerabilities CVE-2017-3167, 3169, 7668, 7679 in Apache httpd, and RHEL7 is affected.
https://access.redhat.com/security/cve/cve-2017-3167
https://access.redhat.com/security/cve/cve-2017-3169
https://access.redhat.com/security/cve/cve-2017-7668
https://access.redhat.com/security/cve/cve-2017-7679
Would these issues fix in CentOS 7?
https://access.redhat.com/security/cve/cve-2017-3167
https://access.redhat.com/security/cve/cve-2017-3169
https://access.redhat.com/security/cve/cve-2017-7668
https://access.redhat.com/security/cve/cve-2017-7679
Would these issues fix in CentOS 7?
Re: Apache httpd vulnerabilities (CVE-2017-3167, 3169, 7668, 7679)
CentOS 7 is a rebuild of RHEL 7 so when Redhat fix these and release them, they will get rebuilt and released by CentOS.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Re: Apache httpd vulnerabilities (CVE-2017-3167, 3169, 7668, 7679)
Thanks for your reply. I will contact RedHat about release progress.
Re: Apache httpd vulnerabilities (CVE-2017-3167, 3169, 7668, 7679)
Hi,
Is there an ETA to release the fixes for CentOS 7?
Thank you.
Is there an ETA to release the fixes for CentOS 7?
Thank you.
Re: Apache httpd vulnerabilities (CVE-2017-3167, 3169, 7668, 7679)
They are part of 7.4 which is already available in the CR repo.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Re: Apache httpd vulnerabilities (CVE-2017-3167, 3169, 7668, 7679)
Thank you Trevor.
What about the current stable release (7.3)?
What about the current stable release (7.3)?
TrevorH wrote:They are part of 7.4 which is already available in the CR repo.
Re: Apache httpd vulnerabilities (CVE-2017-3167, 3169, 7668, 7679)
CentOS 7.3.1611 stopped receiving updates the moment RHEL 7.4 was released. Those httpd updates are now available in the CR repo, and those updates will also be included in CentOS 7.4.1708 when it gets released.
-
- Posts: 1522
- Joined: 2014/05/21 20:16:00
- Location: Central New York, USA
Re: Apache httpd vulnerabilities (CVE-2017-3167, 3169, 7668, 7679)
to both of you, this should solve your issues if they are immediate -
I did it on all my machines; worked great.
Code: Select all
yum update --enablerepo=cr