What is the severity of RHSA-2022:0288?

The severity of RHSA-2022:0288 is classified as important.

How do I fix RHSA-2022:0288?

To fix RHSA-2022:0288, you should update the httpd package to version 2.4.37-16.module+el8.1.0+13809+822d170a.3.

What vulnerability is addressed by RHSA-2022:0288?

RHSA-2022:0288 addresses a buffer overflow vulnerability in mod_lua while parsing multipart content (CVE-2021-44790).

Which packages are affected by RHSA-2022:0288?

The affected packages include httpd, httpd-debuginfo, httpd-devel, and httpd-tools among others.

What can happen if RHSA-2022:0288 is not addressed?

If RHSA-2022:0288 is not addressed, attackers may exploit the buffer overflow vulnerability, potentially leading to security breaches.

Vulnerability/
RHSA-2022:0288

CWE

119

26/1/2022

RHSA-2022:0288: Important: httpd:2.4 security update

First published: Wed Jan 26 2022(Updated: )

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.<br>Security Fix(es):<br><li> httpd: mod_lua: Possible buffer overflow when parsing multipart content (CVE-2021-44790)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2022:0288?
The severity of RHSA-2022:0288 is classified as important.
How do I fix RHSA-2022:0288?
To fix RHSA-2022:0288, you should update the httpd package to version 2.4.37-16.module+el8.1.0+13809+822d170a.3.
What vulnerability is addressed by RHSA-2022:0288?
RHSA-2022:0288 addresses a buffer overflow vulnerability in mod_lua while parsing multipart content (CVE-2021-44790).
Which packages are affected by RHSA-2022:0288?
The affected packages include httpd, httpd-debuginfo, httpd-devel, and httpd-tools among others.
What can happen if RHSA-2022:0288 is not addressed?
If RHSA-2022:0288 is not addressed, attackers may exploit the buffer overflow vulnerability, potentially leading to security breaches.

agent/severity
agent/type
agent/softwarecombine
agent/first-publish-date
agent/last-modified-date
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2022:0288
agent/software-canonical-lookup
agent/title
agent/references
agent/weakness
agent/remedy
agent/tags
agent/description
agent/event
agent/trending
package-manager/redhat

Frequently Asked Questions

What is the severity of RHSA-2022:0288?
The severity of RHSA-2022:0288 is classified as important.
How do I fix RHSA-2022:0288?
To fix RHSA-2022:0288, you should update the httpd package to version 2.4.37-16.module+el8.1.0+13809+822d170a.3.
What vulnerability is addressed by RHSA-2022:0288?
RHSA-2022:0288 addresses a buffer overflow vulnerability in mod_lua while parsing multipart content (CVE-2021-44790).
Which packages are affected by RHSA-2022:0288?
The affected packages include httpd, httpd-debuginfo, httpd-devel, and httpd-tools among others.
What can happen if RHSA-2022:0288 is not addressed?
If RHSA-2022:0288 is not addressed, attackers may exploit the buffer overflow vulnerability, potentially leading to security breaches.

RHSA-2022:0288: Important: httpd:2.4 security update

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2022:0288?

How do I fix RHSA-2022:0288?

What vulnerability is addressed by RHSA-2022:0288?

Which packages are affected by RHSA-2022:0288?

What can happen if RHSA-2022:0288 is not addressed?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of RHSA-2022:0288?

How do I fix RHSA-2022:0288?

What vulnerability is addressed by RHSA-2022:0288?

Which packages are affected by RHSA-2022:0288?

What can happen if RHSA-2022:0288 is not addressed?

Affected Software	Affected Version	How to fix
redhat/httpd	<2.4.37-16.module+el8.1.0+13809+822d170a.3	2.4.37-16.module+el8.1.0+13809+822d170a.3
redhat/httpd	<2.4.37-16.module+el8.1.0+13809+822d170a.3	2.4.37-16.module+el8.1.0+13809+822d170a.3
redhat/httpd-debuginfo	<2.4.37-16.module+el8.1.0+13809+822d170a.3	2.4.37-16.module+el8.1.0+13809+822d170a.3
redhat/httpd-debugsource	<2.4.37-16.module+el8.1.0+13809+822d170a.3	2.4.37-16.module+el8.1.0+13809+822d170a.3
redhat/httpd-devel	<2.4.37-16.module+el8.1.0+13809+822d170a.3	2.4.37-16.module+el8.1.0+13809+822d170a.3
redhat/httpd-filesystem	<2.4.37-16.module+el8.1.0+13809+822d170a.3	2.4.37-16.module+el8.1.0+13809+822d170a.3
redhat/httpd-manual	<2.4.37-16.module+el8.1.0+13809+822d170a.3	2.4.37-16.module+el8.1.0+13809+822d170a.3
redhat/httpd-tools	<2.4.37-16.module+el8.1.0+13809+822d170a.3	2.4.37-16.module+el8.1.0+13809+822d170a.3
redhat/httpd-tools-debuginfo	<2.4.37-16.module+el8.1.0+13809+822d170a.3	2.4.37-16.module+el8.1.0+13809+822d170a.3
redhat/httpd	<2.4.37-16.module+el8.1.0+13809+822d170a.3	2.4.37-16.module+el8.1.0+13809+822d170a.3
redhat/httpd-debuginfo	<2.4.37-16.module+el8.1.0+13809+822d170a.3	2.4.37-16.module+el8.1.0+13809+822d170a.3
redhat/httpd-debugsource	<2.4.37-16.module+el8.1.0+13809+822d170a.3	2.4.37-16.module+el8.1.0+13809+822d170a.3
redhat/httpd-devel	<2.4.37-16.module+el8.1.0+13809+822d170a.3	2.4.37-16.module+el8.1.0+13809+822d170a.3
redhat/httpd-tools	<2.4.37-16.module+el8.1.0+13809+822d170a.3	2.4.37-16.module+el8.1.0+13809+822d170a.3
redhat/httpd-tools-debuginfo	<2.4.37-16.module+el8.1.0+13809+822d170a.3	2.4.37-16.module+el8.1.0+13809+822d170a.3