[Apollo] Advisories Statistics light light Login

RLSA-2026:36188

Security Mirrored from RHSA-2026:36188
Issued at: 2026-07-08
Updated at: 2026-07-08

Synopsis

Important: perl-HTTP-Daemon security update



Description

The perl-HTTP-Daemon package includes the HTTP::Daemon class, a subclass of IO::Socket::IP. Instances of the HTTP::Daemon class are HTTP/1.1 servers that listen on a socket for incoming requests.

Security Fix(es):

* perl-HTTP-Daemon: HTTP::Daemon: Arbitrary code execution via OS command injection in send_file() (CVE-2026-8450)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 8 aarch64 Rocky Linux 8 x86_64

Fixes

2481773

CVEs

CVE-2026-8450

Affected packages

Rocky Linux 8 x86_64 - PowerTools

perl-HTTP-Daemon-0:6.01-24.el8_10.noarch.rpm perl-HTTP-Daemon-0:6.01-24.el8_10.src.rpm

Rocky Linux 8 aarch64 - PowerTools

perl-HTTP-Daemon-0:6.01-24.el8_10.noarch.rpm perl-HTTP-Daemon-0:6.01-24.el8_10.src.rpm