httpd:2.4 security, bug fix, and enhancement update

🗓️ 10 Nov 2020 00:00:00Reported by OracleLinuxType

oraclelinux

oraclelinux🔗 linux.oracle.com👁 128 Views

Update for httpd:2.4 includes bug fixes, security enhancements, and Oracle support customization

Reporter	Title	Published	Views	Family All 774
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in the IBM HTTP Server and IBM WebSphere Application Server used in IBM WebSphere Application Server in IBM Cloud	16 Jun 202013:32	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM HTTP Server shipped with IBM Rational ClearCase (CVE-2020-1927, CVE-2020-1934)	17 Apr 202021:29	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in IBM HTTP Server affects IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise	9 Sep 202010:07	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM Tivoli Monitoring embedded WebSphere Application and IHS server	20 Dec 201908:47	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Apache HTTP CVE-2019-10098 and CVE-2020-1927.	22 Sep 202123:38	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities have been identified in IBM HTTP Server used by IBM Rational ClearQuest (CVE-2020-1927, CVE-2020-1934)	3 Jun 202004:23	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities	27 Jan 202100:05	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in WebSphere Application Server bundled with Cloud Pak System and supporting products	6 May 202011:57	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified in IBM WebSphere Application Server, which is shipped with, or a required product for, IBM Tivoli Network Manager (CVE-2020-1927, CVE-2020-1934)	28 Jul 202013:29	–	ibm
IBM Security Bulletins	Security Bulletin: Rational Build Forge security advisory for Apache HTTP Server	27 Oct 202020:56	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
oracle linux	8	src	httpd	2.4.37-30.0.1.module	httpd-2.4.37-30.0.1.module+el8.3.0+7816+49791cfd.src.rpm
oracle linux	8	src	mod_http2	1.15.7-2.module	mod_http2-1.15.7-2.module+el8.3.0+7816+49791cfd.src.rpm
oracle linux	8	src	mod_md	2.0.8-8.module	mod_md-2.0.8-8.module+el8.3.0+7816+49791cfd.src.rpm
oracle linux	8	aarch64	httpd	2.4.37-30.0.1.module	httpd-2.4.37-30.0.1.module+el8.3.0+7816+49791cfd.aarch64.rpm
oracle linux	8	aarch64	httpd-devel	2.4.37-30.0.1.module	httpd-devel-2.4.37-30.0.1.module+el8.3.0+7816+49791cfd.aarch64.rpm
oracle linux	8	noarch	httpd-filesystem	2.4.37-30.0.1.module	httpd-filesystem-2.4.37-30.0.1.module+el8.3.0+7816+49791cfd.noarch.rpm
oracle linux	8	noarch	httpd-manual	2.4.37-30.0.1.module	httpd-manual-2.4.37-30.0.1.module+el8.3.0+7816+49791cfd.noarch.rpm
oracle linux	8	aarch64	httpd-tools	2.4.37-30.0.1.module	httpd-tools-2.4.37-30.0.1.module+el8.3.0+7816+49791cfd.aarch64.rpm
oracle linux	8	aarch64	mod_http2	1.15.7-2.module	mod_http2-1.15.7-2.module+el8.3.0+7816+49791cfd.aarch64.rpm
oracle linux	8	aarch64	mod_ldap	2.4.37-30.0.1.module	mod_ldap-2.4.37-30.0.1.module+el8.3.0+7816+49791cfd.aarch64.rpm

10 Nov 2020 00:00Current

0.1Low risk

Vulners AI Score0.1

CVSS 26.4

CVSS 3.19.1

CVSS 37.5

EPSS0.82379

httpd bug fix security enhancement oracle customization logging cve-2020-1934 mod_proxy_ftp mod_proxy_http mod_rewrite mod_remoteip mod_http2 dos acme server