Lucene search
Basic search
Lucene search
Search by product
Subscribe
K
Start 30-day trial
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
SIGN IN
OracleLinux
ELSA-2021-1809
History
May 25, 2021 - 12:00 a.m.
Vulners
/
Oraclelinux
/
httpd:2.4 security, bug fix, and enhancement update
httpd:2.4 security, bug fix, and enhancement update
2021-05-25
00:00:00
linux.oracle.com
63
httpd
bug fix
enhancement
security
oracle
index
htcacheclean
modproxy
modldap
modproxyhttp
modssl
cve
modsessioncookie
modproxyuswgi
htpasswd
modproxy
modcgid
modproxyhcheck
modhttp2
modmd
acme
unix
EPSS
0.011
Percentile
84.5%
JSON
httpd
[2.4.37-39.0.1]
Set vstring per ORACLE_SUPPORT_PRODUCT [Orabug: 29892262]
Replace index.html with Oracles index page oracle_index.html
[2.4.37-39]
prevent htcacheclean from while break when first file processed
[2.4.37-38]
Resolves: #1918741 - Thousands of /tmp/modproxy.tmp.* files created by apache
[2.4.37-37]
Resolves: #1883648 - [RFE] Update httpd directive SSLProxyMachineCertificateFile
to be able to handle certs without matching private key
[2.4.37-36]
Resolves: #1896176 - [RFE] ProxyWebsocketIdleTimeout from httpd
mod_proxy_wstunnel
Resolves: #1847585 - mod_ldap: High CPU usage at apr_ldap_rebind_remove()
[2.4.37-35]
Resolves: #1651376 - centralizing default index.html for httpd
[2.4.37-33]
Resolves: #1868608 - Intermittent Segfault in Apache httpd due to pool
concurrency issues
Resolves: #1861380 - httpd/mod_proxy_http/mod_ssl aborted when sending
a client cert to backend server
Resolves: #1680118 - unorderly connection close when client attempts
renegotiation
[2.4.37-31]
Resolves: #1677590 - CVE-2018-17199 httpd:2.4/httpd: mod_session_cookie does
not respect expiry time
Resolves: #1869075 - CVE-2020-11984 httpd:2.4/httpd: mod_proxy_uswgi buffer
overflow
Resolves: #1872828 - httpd: typo in htpasswd, contained in httpd-tools package
Resolves: #1869576 - httpd : mod_proxy should allow to specify
Proxy-Authorization in ProxyRemote directive
Resolves: #1875844 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
Resolves: #1891829 - mod_proxy_hcheck Doesnt perform checks when in
a balancer
mod_http2
[1.15.7-3]
Resolves: #1869077 - CVE-2020-11993 httpd:2.4/mod_http2: httpd:
mod_http2 concurrent pool usage
mod_md
[1:2.0.8-8]
Resolves: #1832844 - mod_md does not work with ACME server that does not
provide keyChange or revokeCert resources
Affected Package
OS
Version
Architecture
Package
Version
Filename
oracle linux
8
src
httpd
< 2.4.37-39.0.1.module
httpd-2.4.37-39.0.1.module+el8.4.0+20024+b87b2deb.src.rpm
oracle linux
8
src
mod_http2
< 1.15.7-3.module
mod_http2-1.15.7-3.module+el8.4.0+20024+b87b2deb.src.rpm
oracle linux
8
src
mod_md
< 2.0.8-8.module
mod_md-2.0.8-8.module+el8.3.0+7816+49791cfd.src.rpm
oracle linux
8
aarch64
httpd
< 2.4.37-39.0.1.module
httpd-2.4.37-39.0.1.module+el8.4.0+20024+b87b2deb.aarch64.rpm
oracle linux
8
aarch64
httpd-devel
< 2.4.37-39.0.1.module
httpd-devel-2.4.37-39.0.1.module+el8.4.0+20024+b87b2deb.aarch64.rpm
oracle linux
8
noarch
httpd-filesystem
< 2.4.37-39.0.1.module
httpd-filesystem-2.4.37-39.0.1.module+el8.4.0+20024+b87b2deb.noarch.rpm
oracle linux
8
noarch
httpd-manual
< 2.4.37-39.0.1.module
httpd-manual-2.4.37-39.0.1.module+el8.4.0+20024+b87b2deb.noarch.rpm
oracle linux
8
aarch64
httpd-tools
< 2.4.37-39.0.1.module
httpd-tools-2.4.37-39.0.1.module+el8.4.0+20024+b87b2deb.aarch64.rpm
oracle linux
8
aarch64
mod_http2
< 1.15.7-3.module
mod_http2-1.15.7-3.module+el8.4.0+20024+b87b2deb.aarch64.rpm
oracle linux
8
aarch64
mod_ldap
< 2.4.37-39.0.1.module
mod_ldap-2.4.37-39.0.1.module+el8.4.0+20024+b87b2deb.aarch64.rpm
Rows per page:
10
1-10 of 28
1
Related
nessus 56
redhat 4
osv 12
rocky 1
almalinux 1
ibm 11
photon 4
suse 5
freebsd 2
openvas 37
amazon 4
f5 2
mageia 2
thn 1
kaspersky 2
fortinet 1
attackerkb 2
gentoo 1
redhatcve 3
prion 3
cvelist 3
ubuntucve 3
debiancve 3
httpd 3
cbl_mariner 2
zdt 2
veracode 3
nvd 3
debian 4
alpinelinux 3
ubuntu 3
cve 3
fedora 2
altlinux 3
slackware 1
archlinux 1
oraclelinux 1
centos 1
rosalinux 1
nessus
nessus
56
Rocky Linux 8 : httpd:2.4 (RLSA-2021:1809)
2023-11-06 00:00:00
Oracle Linux 8 : httpd:2.4 (ELSA-2021-1809)
2021-05-26 00:00:00
RHEL 8 : httpd:2.4 (RHSA-2021:1809)
2021-05-19 00:00:00
redhat
redhat
4
(RHSA-2021:1809) Moderate: httpd:2.4 security, bug fix, and enhancement update
2021-05-18 06:08:34
(RHSA-2020:4383) Moderate: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP5 security update
2020-10-28 15:45:34
(RHSA-2020:4384) Moderate: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP5 security update
2020-10-28 15:46:06
osv
osv
12
Moderate: httpd:2.4 security, bug fix, and enhancement update
2021-05-18 06:08:34
Moderate: httpd:2.4 security, bug fix, and enhancement update
2021-05-18 06:08:34
apache2 - security update
2019-01-29 00:00:00
rocky
rocky
httpd:2.4 security, bug fix, and enhancement update
2021-05-18 06:08:34
almalinux
almalinux
Moderate: httpd:2.4 security, bug fix, and enhancement update
2021-05-18 06:08:34
ibm
ibm
11
Security Bulletin: Vulnerability in Apache HTTP (CVE-2018-17199 and CVE-2020-11993) affects HMC
2021-11-22 06:10:24
Security Bulletin: Rational Build Forge security advisory for Apache HTTP Server
2020-10-27 20:56:56
Security Bulletin: A security vulnerability has been identified in IBM HTTP Server shipped with IBM Rational ClearQuest (CVE-2018-17199)
2019-04-02 16:35:01
photon
photon
4
Critical Photon OS Security Update - PHSA-2020-0125
2020-08-12 00:00:00
Critical Photon OS Security Update - PHSA-2020-3.0-0125
2020-08-12 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0313
2020-08-18 00:00:00
suse
suse
5
Security update for apache2 (moderate)
2020-08-30 00:00:00
Security update for apache2 (moderate)
2020-08-29 00:00:00
Security update for apache2 (moderate)
2019-03-06 00:00:00
freebsd
freebsd
Apache httpd -- Multiple vulnerabilities
2020-08-07 00:00:00
Apache -- vulnerability
2019-01-22 00:00:00
openvas
openvas
37
Mageia: Security Advisory (MGASA-2020-0327)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:2344-1)
2021-04-19 00:00:00
Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2020-1854)
2020-08-31 00:00:00
amazon
amazon
4
Important: httpd
2020-09-15 17:18:00
Low: httpd24
2020-08-26 23:09:00
Important: mod_http2
2020-09-15 17:44:00
f5
f5
K67175700 : Apache vulnerabilities CVE-2020-9490, CVE-2020-11984, CVE-2020-11993
2020-08-30 00:00:00
K54296221 : Apache httpd vulnerability CVE-2018-17199
2019-02-05 00:00:00
mageia
mageia
Updated apache packages fix security vulnerability
2020-08-18 20:41:27
Updated apache packages fix security vulnerability
2019-03-15 00:39:55
thn
thn
Google Researcher Reported 3 Flaws in Apache Web Server Software
2020-08-25 06:52:00
kaspersky
kaspersky
KLA12368 Multiple vulnerabilities in Apache HTTP Server
2020-08-07 00:00:00
KLA12364 Multiple vulnerabilities in Apache HTTP Server
2019-02-28 00:00:00
fortinet
fortinet
Multiple Apache Vulnerabilties fixed in 2.4.46
2020-10-05 00:00:00
attackerkb
attackerkb
CVE-2020-9490
2020-08-07 00:00:00
CVE-2020-11984 — Multiple Vulnerabilities in Apache Web Server Could Allow for Remote Code Execution
2020-08-07 00:00:00
gentoo
gentoo
Apache: Multiple vulnerabilities
2020-08-08 00:00:00
redhatcve
redhatcve
CVE-2018-17199
2019-01-22 21:50:18
CVE-2020-11993
2020-08-11 20:13:36
CVE-2020-11984
2020-08-11 20:13:29
prion
prion
Session fixation
2019-01-30 22:29:00
Information disclosure
2020-08-07 16:15:00
Information disclosure
2020-08-07 16:15:00
cvelist
cvelist
CVE-2018-17199
2019-01-30 22:00:00
CVE-2020-11993
2020-08-07 15:32:55
CVE-2020-11984
2020-08-07 15:27:15
ubuntucve
ubuntucve
CVE-2018-17199
2019-01-30 00:00:00
CVE-2020-11984
2020-08-07 00:00:00
CVE-2020-11993
2020-08-07 00:00:00
debiancve
debiancve
CVE-2018-17199
2019-01-30 22:29:00
CVE-2020-11984
2020-08-07 16:15:11
CVE-2020-11993
2020-08-07 16:15:11
httpd
httpd
Apache Httpd < 2.4.38 : mod_session_cookie does not respect expiry time
2018-10-08 00:00:00
Apache Httpd < 2.4.44 : mod_proxy_uwsgi buffer overflow
2020-07-22 00:00:00
Apache Httpd < 2.4.44 : Push Diary Crash on Specifically Crafted HTTP/2 Header
2020-06-16 00:00:00
cbl_mariner
cbl_mariner
CVE-2020-11984 affecting package httpd 2.4.43-
2021-07-08 21:56:40
CVE-2020-11993 affecting package httpd 2.4.43-
2021-07-08 21:56:40
zdt
zdt
Apache2 mod_proxy_uwsgi Incorrect Request Handling Exploit
2020-08-31 00:00:00
Apache 2 HTTP2 Module Concurrent Pool Usage Vulnerability
2020-12-08 00:00:00
veracode
veracode
Information Disclosure
2020-08-11 03:24:53
Improper Session Management
2019-11-21 00:17:08
Denial Of Service (DoS)
2020-08-11 03:25:00
nvd
nvd
CVE-2018-17199
2019-01-30 22:29:00
CVE-2020-11993
2020-08-07 16:15:11
CVE-2020-11984
2020-08-07 16:15:11
debian
debian
4
[SECURITY] [DSA 4757-1] apache2 security update
2020-08-31 15:10:58
[SECURITY] [DLA 1647-1] apache2 security update
2019-01-29 21:28:38
[SECURITY] [DSA 4757-1] apache2 security update
2020-08-31 15:10:58
alpinelinux
alpinelinux
CVE-2018-17199
2019-01-30 22:29:00
CVE-2020-11993
2020-08-07 16:15:11
CVE-2020-11984
2020-08-07 16:15:11
ubuntu
ubuntu
Apache HTTP Server vulnerabilities
2020-08-13 00:00:00
uWSGI vulnerability
2021-08-30 00:00:00
uWSGI vulnerability
2021-09-03 00:00:00
cve
cve
CVE-2018-17199
2019-01-30 22:29:00
CVE-2020-11993
2020-08-07 16:15:11
CVE-2020-11984
2020-08-07 16:15:11
fedora
fedora
[SECURITY] Fedora 32 Update: mod_http2-1.15.14-1.fc32
2020-08-21 01:11:28
[SECURITY] Fedora 31 Update: mod_http2-1.15.14-1.fc31
2020-08-26 14:41:04
altlinux
altlinux
Security fix for the ALT Linux 8 package apache2 version 1:2.4.38-alt1
2019-01-28 00:00:00
Security fix for the ALT Linux 9 package apache2 version 1:2.4.38-alt1
2019-01-25 00:00:00
Security fix for the ALT Linux 10 package apache2 version 1:2.4.38-alt1
2019-01-25 00:00:00
slackware
slackware
[slackware-security] httpd
2019-01-23 04:41:31
archlinux
archlinux
[ASA-201901-14] apache: multiple issues
2019-01-24 00:00:00
oraclelinux
oraclelinux
httpd security, bug fix, and enhancement update
2020-04-06 00:00:00
centos
centos
httpd, mod_ldap, mod_proxy_html, mod_session, mod_ssl security update
2020-04-08 18:07:48
rosalinux
rosalinux
Advisory ROSA-SA-2023-2159
2023-04-25 11:49:15
EPSS
0.011
Percentile
84.5%
JSON
Related for ELSA-2021-1809
nessus
56
redhat
4
osv
12
rocky
1
almalinux
1
ibm
11
photon
4
suse
5
freebsd
2
openvas
37
amazon
4
f5
2
mageia
2
thn
1
kaspersky
2
fortinet
1
attackerkb
2
gentoo
1
redhatcve
3
prion
3
cvelist
3
ubuntucve
3
debiancve
3
httpd
3
cbl_mariner
2
zdt
2
veracode
3
nvd
3
debian
4
alpinelinux
3
ubuntu
3
cve
3
fedora
2
altlinux
3
slackware
1
archlinux
1
oraclelinux
1
centos
1
rosalinux
1