httpd:2.4 security update

🗓️ 04 Sep 2025 00:00:00Reported by OracleLinuxType

oraclelinux

oraclelinux🔗 linux.oracle.com👁 12 Views

Please confirm how you want the input text parsed into objects (e.g., per package/version or per CVE item).

Reporter	Title	Published	Views	Family All 1066
IBM Security Bulletins	Security Bulletin: IBM Planning Analytics Workspace is affected by vulnerabilities	15 Apr 202503:18	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Apache HTTP Server (CVE-2024-38475) affects Power HMC.	28 Jan 202522:08	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified with the DS8900F and DS8A00 Hardware Management Console (HMC)	27 May 202523:25	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM Concert Software.	22 Dec 202509:22	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Datapower Operations Dashboard is vulnerable to a denial of service CVE-2024-38477	28 Jan 202522:08	–	ibm
IBM Security Bulletins	Security Bulletin: IBM HTTP Server is vulnerable to multiple vulnerabilities due to the included Apache HTTP Server	29 Jul 202414:30	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in httpd library (CVE-2024-47252, CVE-2025-23048, CVE-2025-49630) affect Power HMC.	20 Nov 202506:09	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Aspera Console has addressed multiple vulnerabilities (CVE-2024-38477, CVE-2021-38963, CVE-2024-38475, CVE-2024-38474)	15 Apr 202502:56	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in http-server affect Cloud Pak System	29 Oct 202410:37	–	ibm
IBM Security Bulletins	Security Bulletin: IBM HTTP Server (powered by Apache) for IBM i is vulnerable to a remote attacker obtaining sensitive information, bypassing security restrictions, and a server-side request forgery due to multiple vulnerabilities.	8 Dec 202414:16	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
oracle linux	8	src	httpd	2.4.37-65.0.1.module	httpd-2.4.37-65.0.1.module+el8.10.0+90652+bef864ba.5.src.rpm
oracle linux	8	src	mod_http2	1.15.7-10.module	mod_http2-1.15.7-10.module+el8.10.0+90652+bef864ba.4.src.rpm
oracle linux	8	src	mod_md	2.0.8-8.module	mod_md-2.0.8-8.module+el8.9.0+90011+2f9c6a23.src.rpm
oracle linux	8	aarch64	httpd	2.4.37-65.0.1.module	httpd-2.4.37-65.0.1.module+el8.10.0+90652+bef864ba.5.aarch64.rpm
oracle linux	8	aarch64	httpd-devel	2.4.37-65.0.1.module	httpd-devel-2.4.37-65.0.1.module+el8.10.0+90652+bef864ba.5.aarch64.rpm
oracle linux	8	noarch	httpd-filesystem	2.4.37-65.0.1.module	httpd-filesystem-2.4.37-65.0.1.module+el8.10.0+90652+bef864ba.5.noarch.rpm
oracle linux	8	noarch	httpd-manual	2.4.37-65.0.1.module	httpd-manual-2.4.37-65.0.1.module+el8.10.0+90652+bef864ba.5.noarch.rpm
oracle linux	8	aarch64	httpd-tools	2.4.37-65.0.1.module	httpd-tools-2.4.37-65.0.1.module+el8.10.0+90652+bef864ba.5.aarch64.rpm
oracle linux	8	aarch64	mod_http2	1.15.7-10.module	mod_http2-1.15.7-10.module+el8.10.0+90652+bef864ba.4.aarch64.rpm
oracle linux	8	aarch64	mod_ldap	2.4.37-65.0.1.module	mod_ldap-2.4.37-65.0.1.module+el8.10.0+90652+bef864ba.5.aarch64.rpm

04 Sep 2025 00:00Current

7High risk

Vulners AI Score7

CVSS 3.19.1

EPSS0.93858

SSVC