logo
DATABASE RESOURCES PRICING ABOUT US

(RHSA-2022:1915) Moderate: httpd:2.4 security and bug fix update

Description

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fix(es): * httpd: Request splitting via HTTP/2 method injection and mod_proxy (CVE-2021-33193) * httpd: mod_proxy_uwsgi: out-of-bounds read via a crafted request uri-path (CVE-2021-36160) * httpd: possible NULL dereference or SSRF in forward proxy configurations (CVE-2021-44224) * httpd: Single zero byte stack overflow in mod_auth_digest (CVE-2020-35452) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.6 Release Notes linked from the References section.


Affected Package


OS OS Version Package Name Package Version
RedHat any mod_http2 1.15.7-5.module+el8.6.0+13996+01710940
RedHat any mod_session 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-devel 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_session 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_md-debuginfo 2.0.8-8.module+el8.3.0+6814+67d1e611
RedHat any mod_proxy_html 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-tools-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-tools 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_ldap 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_session 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_proxy_html-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-tools-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_ssl 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-debugsource 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_md 2.0.8-8.module+el8.3.0+6814+67d1e611
RedHat any mod_session-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_ldap-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-devel 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_ldap-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_ssl-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_http2-debugsource 1.15.7-5.module+el8.6.0+13996+01710940
RedHat any mod_http2 1.15.7-5.module+el8.6.0+13996+01710940
RedHat any httpd-tools 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_ssl 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_ssl-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_session 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_ssl-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_http2-debugsource 1.15.7-5.module+el8.6.0+13996+01710940
RedHat any mod_session-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_md-debugsource 2.0.8-8.module+el8.3.0+6814+67d1e611
RedHat any httpd-tools 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_http2-debugsource 1.15.7-5.module+el8.6.0+13996+01710940
RedHat any mod_proxy_html-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_ldap 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-manual 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_http2-debuginfo 1.15.7-5.module+el8.6.0+13996+01710940
RedHat any httpd 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_proxy_html 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_md 2.0.8-8.module+el8.3.0+6814+67d1e611
RedHat any mod_ldap-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_ssl 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_http2-debuginfo 1.15.7-5.module+el8.6.0+13996+01710940
RedHat any httpd 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_session-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_http2-debugsource 1.15.7-5.module+el8.6.0+13996+01710940
RedHat any httpd-tools-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_session-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-debugsource 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-devel 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-devel 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_ldap-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_proxy_html-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-tools-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-filesystem 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_http2 1.15.7-5.module+el8.6.0+13996+01710940
RedHat any mod_ssl-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_md-debuginfo 2.0.8-8.module+el8.3.0+6814+67d1e611
RedHat any httpd-debugsource 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_proxy_html 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_md-debuginfo 2.0.8-8.module+el8.3.0+6814+67d1e611
RedHat any mod_ssl 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_proxy_html-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any httpd-debugsource 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_http2 1.15.7-5.module+el8.6.0+13996+01710940
RedHat any mod_md 2.0.8-8.module+el8.3.0+6814+67d1e611
RedHat any mod_http2-debuginfo 1.15.7-5.module+el8.6.0+13996+01710940
RedHat any httpd 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_md-debugsource 2.0.8-8.module+el8.3.0+6814+67d1e611
RedHat any httpd-debuginfo 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_http2 1.15.7-5.module+el8.6.0+13996+01710940
RedHat any mod_md-debugsource 2.0.8-8.module+el8.3.0+6814+67d1e611
RedHat any mod_md 2.0.8-8.module+el8.3.0+6814+67d1e611
RedHat any mod_proxy_html 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_md-debuginfo 2.0.8-8.module+el8.3.0+6814+67d1e611
RedHat any httpd-tools 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_md 2.0.8-8.module+el8.3.0+6814+67d1e611
RedHat any mod_ldap 2.4.37-47.module+el8.6.0+14529+083145da.1
RedHat any mod_md-debugsource 2.0.8-8.module+el8.3.0+6814+67d1e611
RedHat any mod_http2-debuginfo 1.15.7-5.module+el8.6.0+13996+01710940
RedHat any mod_ldap 2.4.37-47.module+el8.6.0+14529+083145da.1

Related