RHSA-2022:0891: Moderate: httpd:2.4 security update

First published: Tue Mar 15 2022(Updated: )

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.<br>Security Fix(es):<br><li> httpd: NULL pointer dereference via malformed requests (CVE-2021-34798)</li> <li> httpd: Out-of-bounds write in ap_escape_quotes() via malicious input (CVE-2021-39275)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Never miss a vulnerability like this again

Reference Links

https://access.redhat.com/errata/RHSA-2022:0891 (Advisory)

agent/severity
agent/type
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/references
agent/title
agent/remedy
agent/weakness
agent/tags
agent/description
agent/event
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2022:0891
agent/software-canonical-lookup
package-manager/redhat

RHSA-2022:0891: Moderate: httpd:2.4 security update

Never miss a vulnerability like this again

Reference Links

Company

Resources

Contact

Affected Software	Affected Version	How to fix
redhat/httpd	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-filesystem	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-manual	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-debuginfo	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-debugsource	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-devel	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-tools	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-tools-debuginfo	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-debuginfo	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-debugsource	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-devel	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-tools	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-tools-debuginfo	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-debuginfo	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-debugsource	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-devel	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-tools	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd-tools-debuginfo	<2.4.37-43.module+el8.5.0+14370+51c6d843.2	2.4.37-43.module+el8.5.0+14370+51c6d843.2
redhat/httpd	<2.4.37-43.module+el8.5.0+14370+51c6d843.2.aa	2.4.37-43.module+el8.5.0+14370+51c6d843.2.aa
redhat/httpd-debuginfo	<2.4.37-43.module+el8.5.0+14370+51c6d843.2.aa	2.4.37-43.module+el8.5.0+14370+51c6d843.2.aa
redhat/httpd-debugsource	<2.4.37-43.module+el8.5.0+14370+51c6d843.2.aa	2.4.37-43.module+el8.5.0+14370+51c6d843.2.aa
redhat/httpd-devel	<2.4.37-43.module+el8.5.0+14370+51c6d843.2.aa	2.4.37-43.module+el8.5.0+14370+51c6d843.2.aa
redhat/httpd-tools	<2.4.37-43.module+el8.5.0+14370+51c6d843.2.aa	2.4.37-43.module+el8.5.0+14370+51c6d843.2.aa
redhat/httpd-tools-debuginfo	<2.4.37-43.module+el8.5.0+14370+51c6d843.2.aa	2.4.37-43.module+el8.5.0+14370+51c6d843.2.aa