[ALSA-2025:23739] Important: mod_md security update
Type:
security
Severity:
important
Release date:
2025-12-22
Description:
This module manages common properties of domains for one or more virtual hosts. Specifically it can use the ACME protocol to automate certificate provisioning. Certificates will be configured for managed domains and their virtual hosts automatically, including at renewal. Security Fix(es): * mod_md: Apache HTTP Server: mod_md (ACME), unintended retry intervals (CVE-2025-55753) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 mod_md-2.4.26-1.el9_7.1.aarch64.rpm b4a30eea6d6b72068063376029778906777ee036416ae5c0c453e3cd77b0907d
ppc64le mod_md-2.4.26-1.el9_7.1.ppc64le.rpm dbe7afefaa0f1649b1595dc8faf6686f51e7fb7b576174657e41f810efa9cb4e
s390x mod_md-2.4.26-1.el9_7.1.s390x.rpm 00fe8ff6623dfd2b0349eb07fd7c5eb45167616dabd1efcfc42d77d75e43ccb8
x86_64 mod_md-2.4.26-1.el9_7.1.x86_64.rpm dc7cea0c5b319bc0d8169fdb450bfd33d0a730f4138e458a53f2e071842611d1
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.