httpd:2.4 security, bug fix, and enhancement update

🗓️ 25 May 2021 00:00:00Reported by OracleLinuxType

oraclelinux

oraclelinux🔗 linux.oracle.com👁 101 Views

httpd:2.4 update with bug fixes and enhancements including security updat

Reporter	Title	Published	Views	Family All 346
0day.today	Apache2 mod_proxy_uwsgi Incorrect Request Handling Exploit	31 Aug 202000:00	–	zdt
0day.today	Apache 2 HTTP2 Module Concurrent Pool Usage Vulnerability	8 Dec 202000:00	–	zdt
ALT Linux	Security fix for the ALT Linux 8 package apache2 version 1:2.4.38-alt1	28 Jan 201900:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package apache2 version 1:2.4.38-alt1	25 Jan 201900:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 9 package apache2 version 1:2.4.38-alt1	25 Jan 201900:00	–	altlinux
IBM Security Bulletins	Security Bulletin: Rational Build Forge security advisory for Apache HTTP Server	27 Oct 202020:56	–	ibm
IBM Security Bulletins	Security Bulletin: Rational Build Forge Security Advisory for Apache HTTP Server (CVE-2019-0190; CVE-2018-17189; CVE-2018-17199)	28 Mar 201907:00	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in httpd (CVE-2018-17199 and CVE-2018-1301).	22 Sep 202123:38	–	ibm
IBM Security Bulletins	WebSphere Application Server and IBM HTTP Server Security Bulletin List	13 Jul 202218:04	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Apache HTTP (CVE-2018-17199 and CVE-2020-11993) affects HMC	22 Nov 202106:10	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
oracle linux	8	src	httpd	2.4.37-39.0.1.module	httpd-2.4.37-39.0.1.module+el8.4.0+20024+b87b2deb.src.rpm
oracle linux	8	src	mod_http2	1.15.7-3.module	mod_http2-1.15.7-3.module+el8.4.0+20024+b87b2deb.src.rpm
oracle linux	8	src	mod_md	2.0.8-8.module	mod_md-2.0.8-8.module+el8.3.0+7816+49791cfd.src.rpm
oracle linux	8	aarch64	httpd	2.4.37-39.0.1.module	httpd-2.4.37-39.0.1.module+el8.4.0+20024+b87b2deb.aarch64.rpm
oracle linux	8	aarch64	httpd-devel	2.4.37-39.0.1.module	httpd-devel-2.4.37-39.0.1.module+el8.4.0+20024+b87b2deb.aarch64.rpm
oracle linux	8	noarch	httpd-filesystem	2.4.37-39.0.1.module	httpd-filesystem-2.4.37-39.0.1.module+el8.4.0+20024+b87b2deb.noarch.rpm
oracle linux	8	noarch	httpd-manual	2.4.37-39.0.1.module	httpd-manual-2.4.37-39.0.1.module+el8.4.0+20024+b87b2deb.noarch.rpm
oracle linux	8	aarch64	httpd-tools	2.4.37-39.0.1.module	httpd-tools-2.4.37-39.0.1.module+el8.4.0+20024+b87b2deb.aarch64.rpm
oracle linux	8	aarch64	mod_http2	1.15.7-3.module	mod_http2-1.15.7-3.module+el8.4.0+20024+b87b2deb.aarch64.rpm
oracle linux	8	aarch64	mod_ldap	2.4.37-39.0.1.module	mod_ldap-2.4.37-39.0.1.module+el8.4.0+20024+b87b2deb.aarch64.rpm

25 May 2021 00:00Current

7.1High risk

Vulners AI Score7.1

CVSS 27.5

CVSS 37.5

CVSS 3.19.8

EPSS0.7629

httpd bug fix enhancement security oracle index htcacheclean modproxy modldap modproxyhttp modssl cve modsessioncookie modproxyuswgi htpasswd modproxy modcgid modproxyhcheck modhttp2 modmd acme unix