First published: Wed Oct 13 2021(Updated: )
The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.<br>Security Fix(es):<br><li> httpd: mod_proxy: SSRF via a crafted request uri-path containing "unix:" (CVE-2021-40438)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/httpd | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-debuginfo | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-debugsource | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-devel | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-filesystem | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-manual | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-tools | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-tools-debuginfo | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-debuginfo | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-debugsource | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-devel | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-tools | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-tools-debuginfo | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-debuginfo | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-debugsource | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-devel | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-tools | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd-tools-debuginfo | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1 | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1 |
redhat/httpd | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1.aa | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1.aa |
redhat/httpd-debuginfo | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1.aa | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1.aa |
redhat/httpd-debugsource | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1.aa | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1.aa |
redhat/httpd-devel | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1.aa | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1.aa |
redhat/httpd-tools | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1.aa | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1.aa |
redhat/httpd-tools-debuginfo | <2.4.37-16.module+el8.1.0+12900+7e6e5641.1.aa | 2.4.37-16.module+el8.1.0+12900+7e6e5641.1.aa |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.