[ALSA-2025:23738] Important: mod_md security update
Type:
security
Severity:
important
Release date:
2025-12-22
Description:
This module manages common properties of domains for one or more virtual hosts. Specifically it can use the ACME protocol to automate certificate provisioning. Certificates will be configured for managed domains and their virtual hosts automatically, including at renewal. Security Fix(es): * mod_md: Apache HTTP Server: mod_md (ACME), unintended retry intervals (CVE-2025-55753) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 mod_md-2.4.26-4.el10_1.aarch64.rpm ebfea913baea70e3107e9da94d0c9642a6f9cb71049af72dd52a089d4653e327
ppc64le mod_md-2.4.26-4.el10_1.ppc64le.rpm e11fc357604c3892bcaddafd46a0d2687fa5f32350ad3b963eb38f9baf54ae23
s390x mod_md-2.4.26-4.el10_1.s390x.rpm b0b40c677f39718268165b11415984c8d0271d568f1dcbc88e3768cb06061251
x86_64 mod_md-2.4.26-4.el10_1.x86_64.rpm a6a5038ea8cf8da3b8a591a5a06169c0657361a8f379028ee02c1afccb197160
x86_64_v2 mod_md-2.4.26-4.el10_1.x86_64_v2.rpm 1deab40e6d0561aa5b0790e638aa7dac811c31de3c2584ee28eae49268ae8230
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.