logo
DATABASE RESOURCES PRICING ABOUT US

Apache HTTP Server vulnerabilities

Description

USN-5212-1 fixed several vulnerabilities in Apache. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that the Apache HTTP Server incorrectly handled certain forward proxy requests. A remote attacker could use this issue to cause the server to crash, resulting in a denial of service, or possibly perform a Server Side Request Forgery attack. (CVE-2021-44224) It was discovered that the Apache HTTP Server Lua module incorrectly handled memory in the multipart parser. A remote attacker could use this issue to cause the server to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2021-44790)


Affected Package


OS OS Version Package Name Package Version
Ubuntu 16.04 apache2 2.4.18-2ubuntu3.17+esm4 Available with Ubuntu Pro (Infra-only)
Ubuntu 16.04 apache2 2.4.18-2ubuntu3.17+esm4
Ubuntu 16.04 apache2-bin 2.4.18-2ubuntu3.17+esm4
Ubuntu 16.04 apache2-bin-dbgsym 2.4.18-2ubuntu3.17+esm4
Ubuntu 16.04 apache2-data 2.4.18-2ubuntu3.17+esm4
Ubuntu 16.04 apache2-dbg 2.4.18-2ubuntu3.17+esm4
Ubuntu 16.04 apache2-dbgsym 2.4.18-2ubuntu3.17+esm4
Ubuntu 16.04 apache2-dev 2.4.18-2ubuntu3.17+esm4
Ubuntu 16.04 apache2-dev-dbgsym 2.4.18-2ubuntu3.17+esm4
Ubuntu 16.04 apache2-doc 2.4.18-2ubuntu3.17+esm4
Ubuntu 16.04 apache2-suexec-custom 2.4.18-2ubuntu3.17+esm4
Ubuntu 16.04 apache2-suexec-custom-dbgsym 2.4.18-2ubuntu3.17+esm4
Ubuntu 16.04 apache2-suexec-pristine 2.4.18-2ubuntu3.17+esm4
Ubuntu 16.04 apache2-suexec-pristine-dbgsym 2.4.18-2ubuntu3.17+esm4
Ubuntu 16.04 apache2-utils 2.4.18-2ubuntu3.17+esm4
Ubuntu 16.04 apache2-utils-dbgsym 2.4.18-2ubuntu3.17+esm4
Ubuntu 16.04 apache2-bin 2.4.18-2ubuntu3.17+esm4 Available with Ubuntu Pro (Infra-only)
Ubuntu 14.04 apache2 2.4.7-1ubuntu4.22+esm3 Available with Ubuntu Pro (Infra-only)
Ubuntu 14.04 apache2 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-bin 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-bin-dbgsym 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-data 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-dbg 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-dev 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-doc 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-mpm-event 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-mpm-itk 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-mpm-prefork 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-mpm-worker 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-suexec 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-suexec-custom 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-suexec-custom-dbgsym 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-suexec-pristine 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-suexec-pristine-dbgsym 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-utils 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-utils-dbgsym 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2.2-bin 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 libapache2-mod-macro 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 libapache2-mod-proxy-html 2.4.7-1ubuntu4.22+esm3
Ubuntu 14.04 apache2-bin 2.4.7-1ubuntu4.22+esm3 Available with Ubuntu Pro (Infra-only)

Related