Action not permitted
Modal body text goes here.
CVE-2018-17189
Vulnerability from cvelistv5
Published
2019-01-30 22:00
Modified
2024-09-17 01:21
Severity ?
EPSS score ?
Summary
In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.
References
Impacted products
▼ | Vendor | Product |
---|---|---|
Apache Software Foundation | Apache HTTP Server |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-05T10:39:59.646Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://httpd.apache.org/security/vulnerabilities_24.html" }, { "name": "106685", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/106685" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://security.netapp.com/advisory/ntap-20190125-0001/" }, { "name": "FEDORA-2019-0300c36537", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6/" }, { "name": "FEDORA-2019-133a8a7cb5", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM/" }, { "name": "GLSA-201903-21", "tags": [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred" ], "url": "https://security.gentoo.org/glsa/201903-21" }, { "name": "20190403 [SECURITY] [DSA 4422-1] apache2 security update", "tags": [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred" ], "url": "https://seclists.org/bugtraq/2019/Apr/5" }, { "name": "USN-3937-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "https://usn.ubuntu.com/3937-1/" }, { "name": "DSA-4422", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "https://www.debian.org/security/2019/dsa-4422" }, { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html" }, { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html" }, { "name": "[httpd-cvs] 20190815 svn commit: r1048743 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20190815 svn commit: r1048742 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us" }, { "name": "RHSA-2019:3933", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://access.redhat.com/errata/RHSA-2019:3933" }, { "name": "RHSA-2019:3935", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://access.redhat.com/errata/RHSA-2019:3935" }, { "name": "RHSA-2019:3932", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://access.redhat.com/errata/RHSA-2019:3932" }, { "name": "RHSA-2019:4126", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://access.redhat.com/errata/RHSA-2019:4126" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.tenable.com/security/tns-2019-09" }, { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "name": "[httpd-cvs] 20200401 svn commit: r1058586 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20200401 svn commit: r1058587 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073143 [3/3] - in /websites/staging/httpd/trunk/content: ./ security/", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073140 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073139 [11/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1888194 [12/13] - /httpd/site/trunk/content/security/json/", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073149 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210606 svn commit: r1075470 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Apache HTTP Server", "vendor": "Apache Software Foundation", "versions": [ { "status": "affected", "version": "2.4.17 to 2.4.37" } ] } ], "datePublic": "2019-01-22T00:00:00", "descriptions": [ { "lang": "en", "value": "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections." } ], "problemTypes": [ { "descriptions": [ { "description": "mod_http2, DoS via slow request bodies", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2021-06-06T10:10:55", "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "shortName": "apache" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "https://httpd.apache.org/security/vulnerabilities_24.html" }, { "name": "106685", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/106685" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://security.netapp.com/advisory/ntap-20190125-0001/" }, { "name": "FEDORA-2019-0300c36537", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6/" }, { "name": "FEDORA-2019-133a8a7cb5", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM/" }, { "name": "GLSA-201903-21", "tags": [ "vendor-advisory", "x_refsource_GENTOO" ], "url": "https://security.gentoo.org/glsa/201903-21" }, { "name": "20190403 [SECURITY] [DSA 4422-1] apache2 security update", "tags": [ "mailing-list", "x_refsource_BUGTRAQ" ], "url": "https://seclists.org/bugtraq/2019/Apr/5" }, { "name": "USN-3937-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "https://usn.ubuntu.com/3937-1/" }, { "name": "DSA-4422", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "https://www.debian.org/security/2019/dsa-4422" }, { "tags": [ "x_refsource_MISC" ], "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html" }, { "tags": [ "x_refsource_MISC" ], "url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html" }, { "name": "[httpd-cvs] 20190815 svn commit: r1048743 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20190815 svn commit: r1048742 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us" }, { "name": "RHSA-2019:3933", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2019:3933" }, { "name": "RHSA-2019:3935", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2019:3935" }, { "name": "RHSA-2019:3932", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2019:3932" }, { "name": "RHSA-2019:4126", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2019:4126" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.tenable.com/security/tns-2019-09" }, { "tags": [ "x_refsource_MISC" ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "name": "[httpd-cvs] 20200401 svn commit: r1058586 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20200401 svn commit: r1058587 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073143 [3/3] - in /websites/staging/httpd/trunk/content: ./ security/", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073140 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073139 [11/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1888194 [12/13] - /httpd/site/trunk/content/security/json/", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073149 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210606 svn commit: r1075470 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@apache.org", "DATE_PUBLIC": "2019-01-22T00:00:00", "ID": "CVE-2018-17189", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Apache HTTP Server", "version": { "version_data": [ { "version_value": "2.4.17 to 2.4.37" } ] } } ] }, "vendor_name": "Apache Software Foundation" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "mod_http2, DoS via slow request bodies" } ] } ] }, "references": { "reference_data": [ { "name": "https://httpd.apache.org/security/vulnerabilities_24.html", "refsource": "CONFIRM", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" }, { "name": "106685", "refsource": "BID", "url": "http://www.securityfocus.com/bid/106685" }, { "name": "https://security.netapp.com/advisory/ntap-20190125-0001/", "refsource": "CONFIRM", "url": "https://security.netapp.com/advisory/ntap-20190125-0001/" }, { "name": "FEDORA-2019-0300c36537", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6/" }, { "name": "FEDORA-2019-133a8a7cb5", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM/" }, { "name": "GLSA-201903-21", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201903-21" }, { "name": "20190403 [SECURITY] [DSA 4422-1] apache2 security update", "refsource": "BUGTRAQ", "url": "https://seclists.org/bugtraq/2019/Apr/5" }, { "name": "USN-3937-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/3937-1/" }, { "name": "DSA-4422", "refsource": "DEBIAN", "url": "https://www.debian.org/security/2019/dsa-4422" }, { "name": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", "refsource": "MISC", "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html" }, { "name": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", "refsource": "MISC", "url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html" }, { "name": "[httpd-cvs] 20190815 svn commit: r1048743 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20190815 svn commit: r1048742 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830@%3Ccvs.httpd.apache.org%3E" }, { "name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us", "refsource": "CONFIRM", "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us" }, { "name": "RHSA-2019:3933", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2019:3933" }, { "name": "RHSA-2019:3935", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2019:3935" }, { "name": "RHSA-2019:3932", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2019:3932" }, { "name": "RHSA-2019:4126", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2019:4126" }, { "name": "https://www.tenable.com/security/tns-2019-09", "refsource": "CONFIRM", "url": "https://www.tenable.com/security/tns-2019-09" }, { "name": "https://www.oracle.com/security-alerts/cpujan2020.html", "refsource": "MISC", "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "name": "[httpd-cvs] 20200401 svn commit: r1058586 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20200401 svn commit: r1058587 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073143 [3/3] - in /websites/staging/httpd/trunk/content: ./ security/", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073140 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073139 [11/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1888194 [12/13] - /httpd/site/trunk/content/security/json/", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073149 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210606 svn commit: r1075470 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d@%3Ccvs.httpd.apache.org%3E" } ] } } } }, "cveMetadata": { "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "assignerShortName": "apache", "cveId": "CVE-2018-17189", "datePublished": "2019-01-30T22:00:00Z", "dateReserved": "2018-09-19T00:00:00", "dateUpdated": "2024-09-17T01:21:57.609Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2018-17189\",\"sourceIdentifier\":\"security@apache.org\",\"published\":\"2019-01-30T22:29:00.357\",\"lastModified\":\"2023-11-07T02:54:11.787\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.\"},{\"lang\":\"es\",\"value\":\"En Apache HTTP Server, en sus versiones 2.4.37 y anteriores, mediante el env\u00edo de cuerpos de respuesta mediante la t\u00e9cnica del \\\"slow loris\\\" a recursos planos, la transmisi\u00f3n h2 para esa petici\u00f3n ocup\u00f3 de forma innecesaria un hilo de servidor que limpiaba tales datos entrantes. Esto afecta solo a las conexiones HTTP/2 (mod_http2).\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"LOW\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\",\"baseScore\":5.0},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E1F45B27-504B-4202-87B8-BD3B094003F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F2FB2B98-DFD2-420A-8A7F-9B288651242F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B803D25B-0A19-4569-BA05-09D58F33917C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8510442C-212F-4013-85FA-E0AB59F6F2C6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.25:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB5673AB-53BB-40B2-83A7-8B82B2D0EBB8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FBB3ED63-45CA-44AB-973C-9AD2569AD800\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF30AD98-9CBA-456E-A827-79FCEDEB30A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C117BF2F-1E5B-4AEC-8770-3153E5B4CD07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"437BC6D8-D103-452C-9C86-D89FC977A50F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B652B1D0-CCDA-46C6-BCFE-A1478CD0A0DC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"344A54D6-1120-4EFB-990D-2837562889A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BA36996-04B2-4DFB-86BC-4E655347E06C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD011C87-5F0C-48AE-88A7-B3A9BD8144EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE5F8320-A680-4E2F-B32F-F7DBEED09ED6\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:santricity_cloud_connector:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB15BCF1-1B1D-49D8-9B76-46DCB10044DB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:storage_automation_store:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B7A6697-98CC-4E36-93DB-B7160F8399F9\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC1BD7B7-6D88-42B8-878E-F1318CA5FCAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D100F7CE-FC64-4CC6-852A-6136D72DA419\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB654DFA-FEF9-4D00-ADB0-F3F2B6ACF13E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:hospitality_guest_access:4.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A3DC116-2844-47A1-BEC2-D0675DD97148\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:hospitality_guest_access:4.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E0F1DF3E-0F2D-4EFC-9A3E-F72149C8AE94\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"82EA4BA7-C38B-4AF3-8914-9E3D089EBDD4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B9C9BC66-FA5F-4774-9BDA-7AB88E2839C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F69B9A5-F21B-4904-9F27-95C0F7A628E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_point_of_service:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F87FC90-16D0-4051-8280-B0DD4441F10B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_point_of_service:7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0ED83E3-E6BF-4EAA-AF8F-33485A88A218\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:sun_zfs_storage_appliance_kit:8.8.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"517A2282-C254-49EB-A52D-FC2B45E70ADD\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"815D70A8-47D3-459C-A32C-9FEACA0659D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07C312A0-CD2C-4B9C-B064-6409B25C278F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:jboss_core_services:1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2466282-51AB-478D-9FF4-FA524265ED2E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"142AD0DD-4CF3-4D74-9442-459CE3347E3A\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/106685\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3932\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3933\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3935\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4126\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://httpd.apache.org/security/vulnerabilities_24.html\",\"source\":\"security@apache.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM/\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6/\",\"source\":\"security@apache.org\"},{\"url\":\"https://seclists.org/bugtraq/2019/Apr/5\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201903-21\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20190125-0001/\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3937-1/\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2019/dsa-4422\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujan2020.html\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2019-09\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]}]}}" } }
gsd-2018-17189
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2018-17189", "description": "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", "id": "GSD-2018-17189", "references": [ "https://www.suse.com/security/cve/CVE-2018-17189.html", "https://www.debian.org/security/2019/dsa-4422", "https://access.redhat.com/errata/RHSA-2020:4751", "https://access.redhat.com/errata/RHSA-2019:4126", "https://access.redhat.com/errata/RHSA-2019:3935", "https://access.redhat.com/errata/RHSA-2019:3933", "https://access.redhat.com/errata/RHSA-2019:3932", "https://ubuntu.com/security/CVE-2018-17189", "https://advisories.mageia.org/CVE-2018-17189.html", "https://security.archlinux.org/CVE-2018-17189", "https://alas.aws.amazon.com/cve/html/CVE-2018-17189.html", "https://linux.oracle.com/cve/CVE-2018-17189.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2018-17189" ], "details": "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", "id": "GSD-2018-17189", "modified": "2023-12-13T01:22:30.713174Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "security@apache.org", "DATE_PUBLIC": "2019-01-22T00:00:00", "ID": "CVE-2018-17189", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Apache HTTP Server", "version": { "version_data": [ { "version_value": "2.4.17 to 2.4.37" } ] } } ] }, "vendor_name": "Apache Software Foundation" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "mod_http2, DoS via slow request bodies" } ] } ] }, "references": { "reference_data": [ { "name": "https://httpd.apache.org/security/vulnerabilities_24.html", "refsource": "CONFIRM", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" }, { "name": "106685", "refsource": "BID", "url": "http://www.securityfocus.com/bid/106685" }, { "name": "https://security.netapp.com/advisory/ntap-20190125-0001/", "refsource": "CONFIRM", "url": "https://security.netapp.com/advisory/ntap-20190125-0001/" }, { "name": "FEDORA-2019-0300c36537", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6/" }, { "name": "FEDORA-2019-133a8a7cb5", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM/" }, { "name": "GLSA-201903-21", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201903-21" }, { "name": "20190403 [SECURITY] [DSA 4422-1] apache2 security update", "refsource": "BUGTRAQ", "url": "https://seclists.org/bugtraq/2019/Apr/5" }, { "name": "USN-3937-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/3937-1/" }, { "name": "DSA-4422", "refsource": "DEBIAN", "url": "https://www.debian.org/security/2019/dsa-4422" }, { "name": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", "refsource": "MISC", "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html" }, { "name": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", "refsource": "MISC", "url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html" }, { "name": "[httpd-cvs] 20190815 svn commit: r1048743 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20190815 svn commit: r1048742 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830@%3Ccvs.httpd.apache.org%3E" }, { "name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us", "refsource": "CONFIRM", "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us" }, { "name": "RHSA-2019:3933", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2019:3933" }, { "name": "RHSA-2019:3935", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2019:3935" }, { "name": "RHSA-2019:3932", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2019:3932" }, { "name": "RHSA-2019:4126", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2019:4126" }, { "name": "https://www.tenable.com/security/tns-2019-09", "refsource": "CONFIRM", "url": "https://www.tenable.com/security/tns-2019-09" }, { "name": "https://www.oracle.com/security-alerts/cpujan2020.html", "refsource": "MISC", "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "name": "[httpd-cvs] 20200401 svn commit: r1058586 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20200401 svn commit: r1058587 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073143 [3/3] - in /websites/staging/httpd/trunk/content: ./ security/", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073140 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073139 [11/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1888194 [12/13] - /httpd/site/trunk/content/security/json/", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073149 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210606 svn commit: r1075470 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d@%3Ccvs.httpd.apache.org%3E" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:apache:http_server:2.4.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:http_server:2.4.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:http_server:2.4.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:http_server:2.4.23:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:http_server:2.4.25:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:http_server:2.4.26:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:http_server:2.4.27:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:http_server:2.4.28:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:http_server:2.4.29:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:http_server:2.4.30:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:http_server:2.4.33:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:http_server:2.4.34:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:http_server:2.4.35:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:http_server:2.4.37:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:netapp:santricity_cloud_connector:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:netapp:storage_automation_store:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:hospitality_guest_access:4.2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:hospitality_guest_access:4.2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:retail_xstore_point_of_service:7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:retail_xstore_point_of_service:7.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:sun_zfs_storage_appliance_kit:8.8.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:redhat:jboss_core_services:1.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "security@apache.org", "ID": "CVE-2018-17189" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-400" } ] } ] }, "references": { "reference_data": [ { "name": "https://httpd.apache.org/security/vulnerabilities_24.html", "refsource": "CONFIRM", "tags": [ "Vendor Advisory" ], "url": "https://httpd.apache.org/security/vulnerabilities_24.html" }, { "name": "https://security.netapp.com/advisory/ntap-20190125-0001/", "refsource": "CONFIRM", "tags": [ "Third Party Advisory" ], "url": "https://security.netapp.com/advisory/ntap-20190125-0001/" }, { "name": "106685", "refsource": "BID", "tags": [ "Third Party Advisory", "VDB Entry" ], "url": "http://www.securityfocus.com/bid/106685" }, { "name": "FEDORA-2019-0300c36537", "refsource": "FEDORA", "tags": [ "Third Party Advisory" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6/" }, { "name": "FEDORA-2019-133a8a7cb5", "refsource": "FEDORA", "tags": [ "Third Party Advisory" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM/" }, { "name": "GLSA-201903-21", "refsource": "GENTOO", "tags": [ "Third Party Advisory" ], "url": "https://security.gentoo.org/glsa/201903-21" }, { "name": "20190403 [SECURITY] [DSA 4422-1] apache2 security update", "refsource": "BUGTRAQ", "tags": [ "Mailing List", "Issue Tracking", "Third Party Advisory" ], "url": "https://seclists.org/bugtraq/2019/Apr/5" }, { "name": "USN-3937-1", "refsource": "UBUNTU", "tags": [ "Third Party Advisory" ], "url": "https://usn.ubuntu.com/3937-1/" }, { "name": "DSA-4422", "refsource": "DEBIAN", "tags": [ "Third Party Advisory" ], "url": "https://www.debian.org/security/2019/dsa-4422" }, { "name": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", "refsource": "MISC", "tags": [ "Third Party Advisory" ], "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html" }, { "name": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", "refsource": "MISC", "tags": [ "Third Party Advisory" ], "url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html" }, { "name": "[httpd-cvs] 20190815 svn commit: r1048743 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "tags": [ "Mailing List", "Vendor Advisory" ], "url": "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20190815 svn commit: r1048742 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "tags": [ "Mailing List", "Vendor Advisory" ], "url": "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830@%3Ccvs.httpd.apache.org%3E" }, { "name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us", "refsource": "CONFIRM", "tags": [ "Third Party Advisory" ], "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us" }, { "name": "RHSA-2019:3933", "refsource": "REDHAT", "tags": [ "Third Party Advisory" ], "url": "https://access.redhat.com/errata/RHSA-2019:3933" }, { "name": "RHSA-2019:3935", "refsource": "REDHAT", "tags": [ "Third Party Advisory" ], "url": "https://access.redhat.com/errata/RHSA-2019:3935" }, { "name": "RHSA-2019:3932", "refsource": "REDHAT", "tags": [ "Third Party Advisory" ], "url": "https://access.redhat.com/errata/RHSA-2019:3932" }, { "name": "RHSA-2019:4126", "refsource": "REDHAT", "tags": [ "Third Party Advisory" ], "url": "https://access.redhat.com/errata/RHSA-2019:4126" }, { "name": "https://www.tenable.com/security/tns-2019-09", "refsource": "CONFIRM", "tags": [ "Third Party Advisory" ], "url": "https://www.tenable.com/security/tns-2019-09" }, { "name": "https://www.oracle.com/security-alerts/cpujan2020.html", "refsource": "MISC", "tags": [ "Third Party Advisory" ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "name": "[httpd-cvs] 20200401 svn commit: r1058586 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "tags": [ "Mailing List", "Vendor Advisory" ], "url": "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20200401 svn commit: r1058587 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "tags": [ "Mailing List", "Vendor Advisory" ], "url": "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073140 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "tags": [ "Mailing List", "Vendor Advisory" ], "url": "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073139 [11/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", "refsource": "MLIST", "tags": [ "Mailing List", "Vendor Advisory" ], "url": "https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", "refsource": "MLIST", "tags": [ "Mailing List", "Vendor Advisory" ], "url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073143 [3/3] - in /websites/staging/httpd/trunk/content: ./ security/", "refsource": "MLIST", "tags": [ "Mailing List", "Vendor Advisory" ], "url": "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", "refsource": "MLIST", "tags": [ "Mailing List", "Vendor Advisory" ], "url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1073149 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", "refsource": "MLIST", "tags": [ "Mailing List", "Vendor Advisory" ], "url": "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210606 svn commit: r1075470 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", "refsource": "MLIST", "tags": [ "Mailing List", "Vendor Advisory" ], "url": "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d@%3Ccvs.httpd.apache.org%3E" }, { "name": "[httpd-cvs] 20210330 svn commit: r1888194 [12/13] - /httpd/site/trunk/content/security/json/", "refsource": "MLIST", "tags": [ "Mailing List", "Vendor Advisory" ], "url": "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538@%3Ccvs.httpd.apache.org%3E" } ] } }, "impact": { "baseMetricV2": { "acInsufInfo": false, "cvssV2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false }, "baseMetricV3": { "cvssV3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1" }, "exploitabilityScore": 3.9, "impactScore": 1.4 } }, "lastModifiedDate": "2021-07-06T16:39Z", "publishedDate": "2019-01-30T22:29Z" } } }
rhsa-2019_3933
Vulnerability from csaf_redhat
Published
2019-11-20 16:14
Modified
2024-11-15 03:18
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 7
Notes
Topic
An update is now available for JBoss Core Services on RHEL 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737)
* openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734)
* mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)
* openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407)
* mod_session_cookie does not respect expiry time (CVE-2018-17199)
* mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)
* mod_http2: possible crash on late upgrade (CVE-2019-0197)
* mod_http2: read-after-free on a string compare (CVE-2019-0196)
* nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511)
* nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513)
* mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516)
* mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update is now available for JBoss Core Services on RHEL 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737)\n* openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734)\n* mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)\n* openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407)\n* mod_session_cookie does not respect expiry time (CVE-2018-17199)\n* mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)\n* mod_http2: possible crash on late upgrade (CVE-2019-0197)\n* mod_http2: read-after-free on a string compare (CVE-2019-0196)\n* nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511)\n* nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513)\n* mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516)\n* mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2019:3933", "url": "https://access.redhat.com/errata/RHSA-2019:3933" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "1568253", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568253" }, { "category": "external", "summary": "1644364", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644364" }, { "category": "external", "summary": "1645695", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1645695" }, { "category": "external", "summary": "1668493", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668493" }, { "category": "external", "summary": "1668497", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668497" }, { "category": "external", "summary": "1695020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020" }, { "category": "external", "summary": "1695030", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695030" }, { "category": "external", "summary": "1695042", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695042" }, { "category": "external", "summary": "1735741", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735741" }, { "category": "external", "summary": "1741860", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741860" }, { "category": "external", "summary": "1741864", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741864" }, { "category": "external", "summary": "1741868", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741868" }, { "category": "external", "summary": "JBCS-798", "url": "https://issues.redhat.com/browse/JBCS-798" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3933.json" } ], "title": "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 7", "tracking": { "current_release_date": "2024-11-15T03:18:15+00:00", "generator": { "date": "2024-11-15T03:18:15+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2019:3933", "initial_release_date": "2019-11-20T16:14:21+00:00", "revision_history": [ { "date": "2019-11-20T16:14:21+00:00", "number": "1", "summary": "Initial version" }, { "date": "2020-01-06T13:04:40+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-15T03:18:15+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat JBoss Core Services on RHEL 7 Server", "product": { "name": "Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS", "product_identification_helper": { "cpe": "cpe:/a:redhat:jboss_core_services:1::el7" } } } ], "category": "product_family", "name": "Red Hat JBoss Core Services" }, { "branches": [ { "category": "product_version", "name": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-jansson-devel@2.11-20.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-jansson-debuginfo@2.11-20.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-63.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-63.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.1.1-25.jbcs.el7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.1.1-25.jbcs.el7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.1.1-25.jbcs.el7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.1.1-25.jbcs.el7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.1.1-25.jbcs.el7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-48.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-48.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-48.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-48.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-48.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-48.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-48.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-48.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-48.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-brotli-devel@1.0.6-7.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-brotli-debuginfo@1.0.6-7.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.39.2-4.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.39.2-4.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-libcurl@7.64.1-14.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-libcurl-devel@7.64.1-14.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-curl-debuginfo@7.64.1-14.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.37-33.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.37-33.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.37-33.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.37-33.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_md@2.4.37-33.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.37-33.jbcs.el7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.37-33.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.37-33.jbcs.el7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.37-33.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.46-22.redhat_1.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.46-22.redhat_1.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.46-22.redhat_1.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.12-9.Final_redhat_2.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el7?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "product": { "name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "product_id": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.2-16.GA.jbcs.el7?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "product": { "name": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "product_id": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el7?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "product": { "name": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "product_id": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el7?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "product": { "name": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "product_id": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el7?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "product": { "name": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "product_id": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el7?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "product": { "name": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "product_id": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el7?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "product": { "name": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "product_id": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el7?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "product": { "name": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "product_id": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el7?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "product": { "name": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "product_id": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el7?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "product": { "name": "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "product_id": "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.46-22.redhat_1.jbcs.el7?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "product": { "name": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el7?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "product": { "name": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "product_id": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el7?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "product": { "name": "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "product_id": "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-manual@2.4.37-33.jbcs.el7?arch=noarch" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src" }, "product_reference": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src" }, "product_reference": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src" }, "product_reference": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src" }, "product_reference": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src" }, "product_reference": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch" }, "product_reference": "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src" }, "product_reference": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src" }, "product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src" }, "product_reference": "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src" }, "product_reference": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src" }, "product_reference": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src" }, "product_reference": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", "product_id": "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" }, "product_reference": "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", "relates_to_product_reference": "7Server-JBCS" } ] }, "vulnerabilities": [ { "cve": "CVE-2018-0734", "cwe": { "id": "CWE-385", "name": "Covert Timing Channel" }, "discovery_date": "2018-10-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1644364" } ], "notes": [ { "category": "description", "text": "The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: timing side channel attack in the DSA signature algorithm", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-0734" }, { "category": "external", "summary": "RHBZ#1644364", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644364" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-0734", "url": "https://www.cve.org/CVERecord?id=CVE-2018-0734" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734" } ], "release_date": "2018-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:14:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3933" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.0" }, "products": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "openssl: timing side channel attack in the DSA signature algorithm" }, { "cve": "CVE-2018-0737", "cwe": { "id": "CWE-385", "name": "Covert Timing Channel" }, "discovery_date": "2018-04-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1568253" } ], "notes": [ { "category": "description", "text": "OpenSSL RSA key generation was found to be vulnerable to cache side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover parts of the private key.", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-0737" }, { "category": "external", "summary": "RHBZ#1568253", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568253" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-0737", "url": "https://www.cve.org/CVERecord?id=CVE-2018-0737" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0737" }, { "category": "external", "summary": "http://www.openwall.com/lists/oss-security/2018/04/16/3", "url": "http://www.openwall.com/lists/oss-security/2018/04/16/3" }, { "category": "external", "summary": "https://www.openssl.org/news/secadv/20180416.txt", "url": "https://www.openssl.org/news/secadv/20180416.txt" } ], "release_date": "2018-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:14:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3933" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 3.3, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N", "version": "3.0" }, "products": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys" }, { "acknowledgments": [ { "names": [ "Alejandro Cabrera Aldaya" ], "organization": "Universidad Tecnologica de la Habana CUJAE; Cuba" }, { "names": [ "Billy Bob Brumley", "Cesar Pereida Garcia", "Sohaib ul Hassan" ] }, { "names": [ "Nicola Tuveri" ], "organization": "Tampere University of Technology; Finland" } ], "cve": "CVE-2018-5407", "cwe": { "id": "CWE-200", "name": "Exposure of Sensitive Information to an Unauthorized Actor" }, "discovery_date": "2018-11-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1645695" } ], "notes": [ { "category": "description", "text": "A microprocessor side-channel vulnerability was found on SMT (e.g, Hyper-Threading) architectures. An attacker running a malicious process on the same core of the processor as the victim process can extract certain secret information.", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", "title": "Vulnerability summary" }, { "category": "other", "text": "This is a timing side-channel flaw on processors which implement SMT/Hyper-Threading architectures. It can result in leakage of secret data in applications such as OpenSSL that has secret dependent control flow at any granularity level. In order to exploit this flaw, the attacker needs to run a malicious process on the same core of the processor as the victim process.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-5407" }, { "category": "external", "summary": "RHBZ#1645695", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1645695" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-5407", "url": "https://www.cve.org/CVERecord?id=CVE-2018-5407" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5407" }, { "category": "external", "summary": "https://github.com/bbbrumley/portsmash", "url": "https://github.com/bbbrumley/portsmash" }, { "category": "external", "summary": "https://www.openssl.org/news/secadv/20181112.txt", "url": "https://www.openssl.org/news/secadv/20181112.txt" } ], "release_date": "2018-10-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:14:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3933" }, { "category": "workaround", "details": "At this time Red Hat Engineering is working on patches for openssl package in Red Hat Enterprise Linux 7 to address this issue. Until fixes are available, users are advised to review the guidance supplied in the L1 Terminal Fault vulnerability article: https://access.redhat.com/security/vulnerabilities/L1TF and decide what their exposure across shared CPU threads are and act accordingly.", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "PHYSICAL", "availabilityImpact": "NONE", "baseScore": 4.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:P/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N", "version": "3.0" }, "products": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)" }, { "cve": "CVE-2018-17189", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-01-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1668497" } ], "notes": [ { "category": "description", "text": "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_http2: DoS via slow, unneeded request bodies", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-17189" }, { "category": "external", "summary": "RHBZ#1668497", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668497" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-17189", "url": "https://www.cve.org/CVERecord?id=CVE-2018-17189" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-17189" } ], "release_date": "2019-01-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:14:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3933" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_http2: DoS via slow, unneeded request bodies" }, { "cve": "CVE-2018-17199", "cwe": { "id": "CWE-613", "name": "Insufficient Session Expiration" }, "discovery_date": "2019-01-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1668493" } ], "notes": [ { "category": "description", "text": "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_session_cookie does not respect expiry time", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-17199" }, { "category": "external", "summary": "RHBZ#1668493", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668493" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-17199", "url": "https://www.cve.org/CVERecord?id=CVE-2018-17199" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-17199" } ], "release_date": "2019-01-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:14:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3933" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", "version": "3.0" }, "products": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "httpd: mod_session_cookie does not respect expiry time" }, { "cve": "CVE-2019-0196", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2019-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1695030" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_http2: read-after-free on a string compare", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-0196" }, { "category": "external", "summary": "RHBZ#1695030", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695030" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-0196", "url": "https://www.cve.org/CVERecord?id=CVE-2019-0196" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0196" }, { "category": "external", "summary": "http://www.apache.org/dist/httpd/CHANGES_2.4", "url": "http://www.apache.org/dist/httpd/CHANGES_2.4" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-04-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:14:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3933" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_http2: read-after-free on a string compare" }, { "cve": "CVE-2019-0197", "cwe": { "id": "CWE-444", "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)" }, "discovery_date": "2019-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1695042" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_http2: possible crash on late upgrade", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-0197" }, { "category": "external", "summary": "RHBZ#1695042", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695042" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-0197", "url": "https://www.cve.org/CVERecord?id=CVE-2019-0197" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0197" }, { "category": "external", "summary": "http://www.apache.org/dist/httpd/CHANGES_2.4", "url": "http://www.apache.org/dist/httpd/CHANGES_2.4" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:14:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3933" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", "version": "3.0" }, "products": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_http2: possible crash on late upgrade" }, { "cve": "CVE-2019-0217", "cwe": { "id": "CWE-284", "name": "Improper Access Control" }, "discovery_date": "2019-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1695020" } ], "notes": [ { "category": "description", "text": "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_auth_digest: access control bypass due to race condition", "title": "Vulnerability summary" }, { "category": "other", "text": "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-0217" }, { "category": "external", "summary": "RHBZ#1695020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-0217", "url": "https://www.cve.org/CVERecord?id=CVE-2019-0217" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0217" }, { "category": "external", "summary": "http://www.apache.org/dist/httpd/CHANGES_2.4", "url": "http://www.apache.org/dist/httpd/CHANGES_2.4" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-04-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:14:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3933" }, { "category": "workaround", "details": "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "version": "3.0" }, "products": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "httpd: mod_auth_digest: access control bypass due to race condition" }, { "cve": "CVE-2019-9511", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-08-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1741860" } ], "notes": [ { "category": "description", "text": "A flaw was found in HTTP/2. An attacker can request a large amount of data by manipulating window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this queue can consume excess CPU, memory, or both, leading to a denial of service. The highest threat from this vulnerability is to system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "HTTP/2: large amount of data requests leads to denial of service", "title": "Vulnerability summary" }, { "category": "other", "text": "There are no mitigations available for nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-9511" }, { "category": "external", "summary": "RHBZ#1741860", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741860" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-9511", "url": "https://www.cve.org/CVERecord?id=CVE-2019-9511" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511" }, { "category": "external", "summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", "url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md" }, { "category": "external", "summary": "https://kb.cert.org/vuls/id/605641/", "url": "https://kb.cert.org/vuls/id/605641/" }, { "category": "external", "summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", "url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/" }, { "category": "external", "summary": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", "url": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/" } ], "release_date": "2019-08-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:14:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3933" }, { "category": "workaround", "details": "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i \u0027s/http2 //g\u0027 /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "HTTP/2: large amount of data requests leads to denial of service" }, { "acknowledgments": [ { "names": [ "the Envoy security team" ] } ], "cve": "CVE-2019-9513", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-08-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1735741" } ], "notes": [ { "category": "description", "text": "A flaw was found in HTTP/2. An attacker, using PRIORITY frames to flood the system, could cause excessive CPU usage and starvation of other clients. The largest threat from this vulnerability is to system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", "title": "Vulnerability summary" }, { "category": "other", "text": "This flaw has no available mitigation for packages nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-9513" }, { "category": "external", "summary": "RHBZ#1735741", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735741" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-9513", "url": "https://www.cve.org/CVERecord?id=CVE-2019-9513" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513" }, { "category": "external", "summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", "url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md" }, { "category": "external", "summary": "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", "url": "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/" }, { "category": "external", "summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", "url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/" }, { "category": "external", "summary": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", "url": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/" } ], "release_date": "2019-08-13T17:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:14:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3933" }, { "category": "workaround", "details": "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i \u0027s/http2 //g\u0027 /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "HTTP/2: flood using PRIORITY frames results in excessive resource consumption" }, { "cve": "CVE-2019-9516", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-08-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1741864" } ], "notes": [ { "category": "description", "text": "A flaw was found in HTTP/2. An attacker, sending a stream of header with a 0-length header name and a 0-length header value, could cause some implementations to allocate memory for these headers and keep the allocations alive until the session dies. The can consume excess memory, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "HTTP/2: 0-length headers lead to denial of service", "title": "Vulnerability summary" }, { "category": "other", "text": "This flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-9516" }, { "category": "external", "summary": "RHBZ#1741864", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741864" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-9516", "url": "https://www.cve.org/CVERecord?id=CVE-2019-9516" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516" }, { "category": "external", "summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", "url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md" }, { "category": "external", "summary": "https://github.com/nghttp2/nghttp2/issues/1382#", "url": "https://github.com/nghttp2/nghttp2/issues/1382#" }, { "category": "external", "summary": "https://kb.cert.org/vuls/id/605641/", "url": "https://kb.cert.org/vuls/id/605641/" }, { "category": "external", "summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", "url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/" }, { "category": "external", "summary": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", "url": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/" } ], "release_date": "2019-08-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:14:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3933" }, { "category": "workaround", "details": "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i \u0027s/http2 //g\u0027 /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "HTTP/2: 0-length headers lead to denial of service" }, { "cve": "CVE-2019-9517", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-08-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1741868" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in HTTP/2. An attacker can open a HTTP/2 window so the peer can send without constraint. The TCP window remains closed so the peer cannot write the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the server\u0027s queue is setup, the responses can consume excess memory, CPU, or both, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "HTTP/2: request for large response leads to denial of service", "title": "Vulnerability summary" }, { "category": "other", "text": "The package httpd versions as shipped with Red Hat Enterprise Linux 5, 6 and 7 are not affected by this issue as HTTP/2 support is not provided.\nThis flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-9517" }, { "category": "external", "summary": "RHBZ#1741868", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741868" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-9517", "url": "https://www.cve.org/CVERecord?id=CVE-2019-9517" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517" }, { "category": "external", "summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", "url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md" }, { "category": "external", "summary": "https://kb.cert.org/vuls/id/605641/", "url": "https://kb.cert.org/vuls/id/605641/" }, { "category": "external", "summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", "url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/" } ], "release_date": "2019-08-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:14:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3933" }, { "category": "workaround", "details": "The httpd version shipped with Red Hat Enterprise Linux 8 provides HTTP/2 support through mod_http2 package. While mod_http2 package is not updated, users can disable HTTP/2 support as mitigation action by executing the following steps:\n\n1. Stop httpd service:\n$ systemctl stop httpd\n\n2. Remove http/2 protocol support from configuration files:\n$ sed -i \u0027s/\\(h2\\)\\|\\(h2c\\)//g\u0027 \u003chttpd_config_file\u003e\n\n3. Validate configuration files to make sure all syntax is valid:\n$ apachectl configtest\n\n4. Restart httpd service:\n$ systemctl start httpd", "product_ids": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "HTTP/2: request for large response leads to denial of service" } ] }
rhsa-2019_4126
Vulnerability from csaf_redhat
Published
2019-12-10 07:59
Modified
2024-11-15 03:19
Summary
Red Hat Security Advisory: httpd24-httpd security, bug fix, and enhancement update
Notes
Topic
An update for httpd24, httpd24-httpd, and httpd24-nghttp2 is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The Apache HTTP Server is a powerful, efficient, and extensible web server. The httpd24 packages provide a recent stable release of version 2.4 of the Apache HTTP Server, along with the mod_auth_kerb module.
Security Fix(es):
* httpd: mod_session_cookie does not respect expiry time (CVE-2018-17199)
* httpd: mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)
* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)
* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)
* httpd: URL normalization inconsistency (CVE-2019-0220)
* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang (BZ#1669213)
* httpd can not be started with mod_md enabled (BZ#1673019)
* Rebuild metapackage with latest scl-utils (BZ#1696527)
* fix a regression introduced in r1740928 (BZ#1707636)
* duplicated cookie in Apache httpd with mod_session (BZ#1725922)
* Unexpected OCSP in proxy SSL connection (BZ#1744120)
Enhancement(s):
* RFE: updated collection for httpd 2.4 (BZ#1726706)
Additional Changes:
For detailed information on changes in this release, see the Red Hat Software Collections 3.4 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for httpd24, httpd24-httpd, and httpd24-nghttp2 is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The Apache HTTP Server is a powerful, efficient, and extensible web server. The httpd24 packages provide a recent stable release of version 2.4 of the Apache HTTP Server, along with the mod_auth_kerb module.\n\nSecurity Fix(es):\n\n* httpd: mod_session_cookie does not respect expiry time (CVE-2018-17199)\n\n* httpd: mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)\n\n* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)\n\n* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)\n\n* httpd: URL normalization inconsistency (CVE-2019-0220)\n\n* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang (BZ#1669213)\n\n* httpd can not be started with mod_md enabled (BZ#1673019)\n\n* Rebuild metapackage with latest scl-utils (BZ#1696527)\n\n* fix a regression introduced in r1740928 (BZ#1707636)\n\n* duplicated cookie in Apache httpd with mod_session (BZ#1725922)\n\n* Unexpected OCSP in proxy SSL connection (BZ#1744120)\n\nEnhancement(s):\n\n* RFE: updated collection for httpd 2.4 (BZ#1726706)\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Software Collections 3.4 Release Notes linked from the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2019:4126", "url": "https://access.redhat.com/errata/RHSA-2019:4126" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/documentation/en-us/red_hat_software_collections/3/html/3.4_release_notes/", "url": "https://access.redhat.com/documentation/en-us/red_hat_software_collections/3/html/3.4_release_notes/" }, { "category": "external", "summary": "1668493", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668493" }, { "category": "external", "summary": "1668497", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668497" }, { "category": "external", "summary": "1669213", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1669213" }, { "category": "external", "summary": "1673019", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1673019" }, { "category": "external", "summary": "1695020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020" }, { "category": "external", "summary": "1695036", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695036" }, { "category": "external", "summary": "1696527", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1696527" }, { "category": "external", "summary": "1707636", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1707636" }, { "category": "external", "summary": "1725922", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1725922" }, { "category": "external", "summary": "1743956", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743956" }, { "category": "external", "summary": "1743996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743996" }, { "category": "external", "summary": "1744120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1744120" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_4126.json" } ], "title": "Red Hat Security Advisory: httpd24-httpd security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-15T03:19:01+00:00", "generator": { "date": "2024-11-15T03:19:01+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2019:4126", "initial_release_date": "2019-12-10T07:59:33+00:00", "revision_history": [ { "date": "2019-12-10T07:59:33+00:00", "number": "1", "summary": "Initial version" }, { "date": "2019-12-10T07:59:33+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-15T03:19:01+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product": { "name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_software_collections:3::el6" } } }, { "category": "product_name", "name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product": { "name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_software_collections:3::el6" } } }, { "category": "product_name", "name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product": { "name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7" } } }, { "category": "product_name", "name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product": { "name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7" } } }, { "category": "product_name", "name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product": { "name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7" } } }, { "category": "product_name", "name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product": { "name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7" } } }, { "category": "product_name", "name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product": { "name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7" } } }, { "category": "product_name", "name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product": { "name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7" } } } ], "category": "product_family", "name": "Red Hat Software Collections" }, { "branches": [ { "category": "product_version", "name": "httpd24-0:1.1-19.el6.x86_64", "product": { "name": "httpd24-0:1.1-19.el6.x86_64", "product_id": "httpd24-0:1.1-19.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24@1.1-19.el6?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-build-0:1.1-19.el6.x86_64", "product": { "name": "httpd24-build-0:1.1-19.el6.x86_64", "product_id": "httpd24-build-0:1.1-19.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-build@1.1-19.el6?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-runtime-0:1.1-19.el6.x86_64", "product": { "name": "httpd24-runtime-0:1.1-19.el6.x86_64", "product_id": "httpd24-runtime-0:1.1-19.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-runtime@1.1-19.el6?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-scldevel-0:1.1-19.el6.x86_64", "product": { "name": "httpd24-scldevel-0:1.1-19.el6.x86_64", "product_id": "httpd24-scldevel-0:1.1-19.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el6?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "product": { "name": "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "product_id": "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el6?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "product": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "product_id": "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el6?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "product": { "name": "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "product_id": "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el6?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "product": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "product_id": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el6?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-httpd-0:2.4.34-15.el6.x86_64", "product": { "name": "httpd24-httpd-0:2.4.34-15.el6.x86_64", "product_id": "httpd24-httpd-0:2.4.34-15.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el6?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "product": { "name": "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "product_id": "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el6?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "product": { "name": "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "product_id": "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el6?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "product": { "name": "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "product_id": "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el6?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "product": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "product_id": "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "httpd24-mod_session-0:2.4.34-15.el6.x86_64", "product": { "name": "httpd24-mod_session-0:2.4.34-15.el6.x86_64", "product_id": "httpd24-mod_session-0:2.4.34-15.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el6?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "product": { "name": "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "product_id": "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "product": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "product_id": "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el6?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-0:1.1-19.el7.x86_64", "product": { "name": "httpd24-0:1.1-19.el7.x86_64", "product_id": "httpd24-0:1.1-19.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-runtime-0:1.1-19.el7.x86_64", "product": { "name": "httpd24-runtime-0:1.1-19.el7.x86_64", "product_id": "httpd24-runtime-0:1.1-19.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-scldevel-0:1.1-19.el7.x86_64", "product": { "name": "httpd24-scldevel-0:1.1-19.el7.x86_64", "product_id": "httpd24-scldevel-0:1.1-19.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "product": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "product_id": "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "product": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "product_id": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "product": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "product_id": "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "product": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "product_id": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-httpd-0:2.4.34-15.el7.x86_64", "product": { "name": "httpd24-httpd-0:2.4.34-15.el7.x86_64", "product_id": "httpd24-httpd-0:2.4.34-15.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "product": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "product_id": "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "product": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "product_id": "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "product": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "product_id": "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-mod_md-0:2.4.34-15.el7.x86_64", "product": { "name": "httpd24-mod_md-0:2.4.34-15.el7.x86_64", "product_id": "httpd24-mod_md-0:2.4.34-15.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "product": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "product_id": "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "httpd24-mod_session-0:2.4.34-15.el7.x86_64", "product": { "name": "httpd24-mod_session-0:2.4.34-15.el7.x86_64", "product_id": "httpd24-mod_session-0:2.4.34-15.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "product": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "product_id": "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "product": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "product_id": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "httpd24-0:1.1-19.el6.src", "product": { "name": "httpd24-0:1.1-19.el6.src", "product_id": "httpd24-0:1.1-19.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24@1.1-19.el6?arch=src" } } }, { "category": "product_version", "name": "httpd24-nghttp2-0:1.7.1-8.el6.src", "product": { "name": "httpd24-nghttp2-0:1.7.1-8.el6.src", "product_id": "httpd24-nghttp2-0:1.7.1-8.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el6?arch=src" } } }, { "category": "product_version", "name": "httpd24-httpd-0:2.4.34-15.el6.src", "product": { "name": "httpd24-httpd-0:2.4.34-15.el6.src", "product_id": "httpd24-httpd-0:2.4.34-15.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el6?arch=src" } } }, { "category": "product_version", "name": "httpd24-0:1.1-19.el7.src", "product": { "name": "httpd24-0:1.1-19.el7.src", "product_id": "httpd24-0:1.1-19.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=src" } } }, { "category": "product_version", "name": "httpd24-nghttp2-0:1.7.1-8.el7.src", "product": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.src", "product_id": "httpd24-nghttp2-0:1.7.1-8.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=src" } } }, { "category": "product_version", "name": "httpd24-httpd-0:2.4.34-15.el7.src", "product": { "name": "httpd24-httpd-0:2.4.34-15.el7.src", "product_id": "httpd24-httpd-0:2.4.34-15.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "product": { "name": "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "product_id": "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-manual@2.4.34-15.el6?arch=noarch" } } }, { "category": "product_version", "name": "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "product": { "name": "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "product_id": "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-manual@2.4.34-15.el7?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "httpd24-0:1.1-19.el7.ppc64le", "product": { "name": "httpd24-0:1.1-19.el7.ppc64le", "product_id": "httpd24-0:1.1-19.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd24-runtime-0:1.1-19.el7.ppc64le", "product": { "name": "httpd24-runtime-0:1.1-19.el7.ppc64le", "product_id": "httpd24-runtime-0:1.1-19.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd24-scldevel-0:1.1-19.el7.ppc64le", "product": { "name": "httpd24-scldevel-0:1.1-19.el7.ppc64le", "product_id": "httpd24-scldevel-0:1.1-19.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "product": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "product_id": "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "product": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "product_id": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "product": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "product_id": "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "product": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "product_id": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd24-httpd-0:2.4.34-15.el7.ppc64le", "product": { "name": "httpd24-httpd-0:2.4.34-15.el7.ppc64le", "product_id": "httpd24-httpd-0:2.4.34-15.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "product": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "product_id": "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "product": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "product_id": "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "product": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "product_id": "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "product": { "name": "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "product_id": "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "product": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "product_id": "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "product": { "name": "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "product_id": "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "product": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "product_id": "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "product": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "product_id": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "httpd24-0:1.1-19.el7.s390x", "product": { "name": "httpd24-0:1.1-19.el7.s390x", "product_id": "httpd24-0:1.1-19.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=s390x" } } }, { "category": "product_version", "name": "httpd24-runtime-0:1.1-19.el7.s390x", "product": { "name": "httpd24-runtime-0:1.1-19.el7.s390x", "product_id": "httpd24-runtime-0:1.1-19.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=s390x" } } }, { "category": "product_version", "name": "httpd24-scldevel-0:1.1-19.el7.s390x", "product": { "name": "httpd24-scldevel-0:1.1-19.el7.s390x", "product_id": "httpd24-scldevel-0:1.1-19.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=s390x" } } }, { "category": "product_version", "name": "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "product": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "product_id": "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=s390x" } } }, { "category": "product_version", "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "product": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "product_id": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=s390x" } } }, { "category": "product_version", "name": "httpd24-nghttp2-0:1.7.1-8.el7.s390x", "product": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.s390x", "product_id": "httpd24-nghttp2-0:1.7.1-8.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=s390x" } } }, { "category": "product_version", "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "product": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "product_id": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=s390x" } } }, { "category": "product_version", "name": "httpd24-httpd-0:2.4.34-15.el7.s390x", "product": { "name": "httpd24-httpd-0:2.4.34-15.el7.s390x", "product_id": "httpd24-httpd-0:2.4.34-15.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=s390x" } } }, { "category": "product_version", "name": "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "product": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "product_id": "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=s390x" } } }, { "category": "product_version", "name": "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "product": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "product_id": "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=s390x" } } }, { "category": "product_version", "name": "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "product": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "product_id": "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=s390x" } } }, { "category": "product_version", "name": "httpd24-mod_md-0:2.4.34-15.el7.s390x", "product": { "name": "httpd24-mod_md-0:2.4.34-15.el7.s390x", "product_id": "httpd24-mod_md-0:2.4.34-15.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=s390x" } } }, { "category": "product_version", "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "product": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "product_id": "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "httpd24-mod_session-0:2.4.34-15.el7.s390x", "product": { "name": "httpd24-mod_session-0:2.4.34-15.el7.s390x", "product_id": "httpd24-mod_session-0:2.4.34-15.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=s390x" } } }, { "category": "product_version", "name": "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "product": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "product_id": "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "product": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "product_id": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "httpd24-0:1.1-19.el7.aarch64", "product": { "name": "httpd24-0:1.1-19.el7.aarch64", "product_id": "httpd24-0:1.1-19.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd24-runtime-0:1.1-19.el7.aarch64", "product": { "name": "httpd24-runtime-0:1.1-19.el7.aarch64", "product_id": "httpd24-runtime-0:1.1-19.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd24-scldevel-0:1.1-19.el7.aarch64", "product": { "name": "httpd24-scldevel-0:1.1-19.el7.aarch64", "product_id": "httpd24-scldevel-0:1.1-19.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "product": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "product_id": "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "product": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "product_id": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "product": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "product_id": "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "product": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "product_id": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd24-httpd-0:2.4.34-15.el7.aarch64", "product": { "name": "httpd24-httpd-0:2.4.34-15.el7.aarch64", "product_id": "httpd24-httpd-0:2.4.34-15.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "product": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "product_id": "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "product": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "product_id": "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "product": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "product_id": "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd24-mod_md-0:2.4.34-15.el7.aarch64", "product": { "name": "httpd24-mod_md-0:2.4.34-15.el7.aarch64", "product_id": "httpd24-mod_md-0:2.4.34-15.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "product": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "product_id": "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "httpd24-mod_session-0:2.4.34-15.el7.aarch64", "product": { "name": "httpd24-mod_session-0:2.4.34-15.el7.aarch64", "product_id": "httpd24-mod_session-0:2.4.34-15.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "product": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "product_id": "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "product": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "product_id": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src" }, "product_reference": "httpd24-0:1.1-19.el6.src", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64" }, "product_reference": "httpd24-0:1.1-19.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-build-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64" }, "product_reference": "httpd24-build-0:1.1-19.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el6.src", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-manual-0:2.4.34-15.el6.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch" }, "product_reference": "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el6.src", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64" }, "product_reference": "httpd24-runtime-0:1.1-19.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64" }, "product_reference": "httpd24-scldevel-0:1.1-19.el6.x86_64", "relates_to_product_reference": "6Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src" }, "product_reference": "httpd24-0:1.1-19.el6.src", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64" }, "product_reference": "httpd24-0:1.1-19.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-build-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64" }, "product_reference": "httpd24-build-0:1.1-19.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el6.src", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-manual-0:2.4.34-15.el6.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch" }, "product_reference": "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el6.src", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64" }, "product_reference": "httpd24-runtime-0:1.1-19.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64" }, "product_reference": "httpd24-scldevel-0:1.1-19.el6.x86_64", "relates_to_product_reference": "6Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64" }, "product_reference": "httpd24-0:1.1-19.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src" }, "product_reference": "httpd24-0:1.1-19.el7.src", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.src", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch" }, "product_reference": "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.src", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.aarch64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Server-Alt-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src" }, "product_reference": "httpd24-0:1.1-19.el7.src", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.src", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch" }, "product_reference": "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.src", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", "product_id": "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src" }, "product_reference": "httpd24-0:1.1-19.el7.src", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.src", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch" }, "product_reference": "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.src", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src" }, "product_reference": "httpd24-0:1.1-19.el7.src", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.src", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch" }, "product_reference": "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.src", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4-7.7.Z" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64" }, "product_reference": "httpd24-0:1.1-19.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src" }, "product_reference": "httpd24-0:1.1-19.el7.src", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.src", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch" }, "product_reference": "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.src", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.aarch64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Server-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64" }, "product_reference": "httpd24-0:1.1-19.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src" }, "product_reference": "httpd24-0:1.1-19.el7.src", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.src", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch" }, "product_reference": "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_md-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_session-0:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64" }, "product_reference": "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.src", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64" }, "product_reference": "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-runtime-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.aarch64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.ppc64le", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.s390x", "relates_to_product_reference": "7Workstation-RHSCL-3.4" }, { "category": "default_component_of", "full_product_name": { "name": "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" }, "product_reference": "httpd24-scldevel-0:1.1-19.el7.x86_64", "relates_to_product_reference": "7Workstation-RHSCL-3.4" } ] }, "vulnerabilities": [ { "cve": "CVE-2018-17189", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-01-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1668497" } ], "notes": [ { "category": "description", "text": "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_http2: DoS via slow, unneeded request bodies", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-17189" }, { "category": "external", "summary": "RHBZ#1668497", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668497" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-17189", "url": "https://www.cve.org/CVERecord?id=CVE-2018-17189" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-17189" } ], "release_date": "2019-01-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-12-10T07:59:33+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:4126" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_http2: DoS via slow, unneeded request bodies" }, { "cve": "CVE-2018-17199", "cwe": { "id": "CWE-613", "name": "Insufficient Session Expiration" }, "discovery_date": "2019-01-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1668493" } ], "notes": [ { "category": "description", "text": "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_session_cookie does not respect expiry time", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-17199" }, { "category": "external", "summary": "RHBZ#1668493", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668493" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-17199", "url": "https://www.cve.org/CVERecord?id=CVE-2018-17199" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-17199" } ], "release_date": "2019-01-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-12-10T07:59:33+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:4126" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", "version": "3.0" }, "products": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "httpd: mod_session_cookie does not respect expiry time" }, { "cve": "CVE-2019-0217", "cwe": { "id": "CWE-284", "name": "Improper Access Control" }, "discovery_date": "2019-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1695020" } ], "notes": [ { "category": "description", "text": "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_auth_digest: access control bypass due to race condition", "title": "Vulnerability summary" }, { "category": "other", "text": "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-0217" }, { "category": "external", "summary": "RHBZ#1695020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-0217", "url": "https://www.cve.org/CVERecord?id=CVE-2019-0217" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0217" }, { "category": "external", "summary": "http://www.apache.org/dist/httpd/CHANGES_2.4", "url": "http://www.apache.org/dist/httpd/CHANGES_2.4" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-04-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-12-10T07:59:33+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:4126" }, { "category": "workaround", "details": "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", "product_ids": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "version": "3.0" }, "products": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "httpd: mod_auth_digest: access control bypass due to race condition" }, { "cve": "CVE-2019-0220", "cwe": { "id": "CWE-41", "name": "Improper Resolution of Path Equivalence" }, "discovery_date": "2019-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1695036" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. When the path component of a request URL contains multiple consecutive slashes (\u0027/\u0027), directives such as LocationMatch and RewriteRule must account for duplicates in regular expressions while other aspects of the servers processing will implicitly collapse them.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: URL normalization inconsistency", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Low, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-0220" }, { "category": "external", "summary": "RHBZ#1695036", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695036" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-0220", "url": "https://www.cve.org/CVERecord?id=CVE-2019-0220" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0220", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0220" }, { "category": "external", "summary": "http://www.apache.org/dist/httpd/CHANGES_2.4", "url": "http://www.apache.org/dist/httpd/CHANGES_2.4" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-04-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-12-10T07:59:33+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:4126" }, { "category": "workaround", "details": "This flaw can be mitigation by replacing multiple consecutive slashes, used in directives that match against the path component of the request URL with regular expressions.", "product_ids": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 3.3, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: URL normalization inconsistency" }, { "cve": "CVE-2019-10092", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2019-08-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1743956" } ], "notes": [ { "category": "description", "text": "A cross-site scripting vulnerability was found in Apache httpd, affecting the mod_proxy error page. Under certain circumstances, a crafted link could inject content into the HTML displayed in the error page, potentially leading to client-side exploitation.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: limited cross-site scripting in mod_proxy error page", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-10092" }, { "category": "external", "summary": "RHBZ#1743956", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743956" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-10092", "url": "https://www.cve.org/CVERecord?id=CVE-2019-10092" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-10092", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10092" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-08-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-12-10T07:59:33+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:4126" }, { "category": "workaround", "details": "This flaw is only exploitable if Proxy* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R \u0027^\\s*Proxy\u0027 /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_proxy.html", "product_ids": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.0" }, "products": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: limited cross-site scripting in mod_proxy error page" }, { "cve": "CVE-2019-10097", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2019-08-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1743996" } ], "notes": [ { "category": "description", "text": "A vulnerability was discovered in Apache httpd, in mod_remoteip. A trusted proxy using the \"PROXY\" protocol could send specially crafted headers that can cause httpd to experience a stack buffer overflow or NULL pointer dereference, leading to a crash or other potential consequences.\r\n\r\nThis issue could only be exploited by configured trusted intermediate proxy servers. HTTP clients such as browsers could not exploit the vulnerability.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: null-pointer dereference in mod_remoteip", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-10097" }, { "category": "external", "summary": "RHBZ#1743996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743996" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-10097", "url": "https://www.cve.org/CVERecord?id=CVE-2019-10097" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-10097", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10097" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-08-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-12-10T07:59:33+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:4126" }, { "category": "workaround", "details": "This flaw is only exploitable if RemoteIP* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R \u0027^\\s*RemoteIP\u0027 /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_remoteip.html", "product_ids": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.6, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "httpd: null-pointer dereference in mod_remoteip" } ] }
rhsa-2019_3932
Vulnerability from csaf_redhat
Published
2019-11-20 16:22
Modified
2024-11-15 03:18
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 6
Notes
Topic
Updated packages that provide Red Hat JBoss Core Services Pack Apache Server 2.4.37 and fix several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated packages that provide Red Hat JBoss Core Services Pack Apache Server 2.4.37 and fix several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2019:3932", "url": "https://access.redhat.com/errata/RHSA-2019:3932" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "1568253", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568253" }, { "category": "external", "summary": "1644364", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644364" }, { "category": "external", "summary": "1645695", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1645695" }, { "category": "external", "summary": "1668493", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668493" }, { "category": "external", "summary": "1668497", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668497" }, { "category": "external", "summary": "1695020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020" }, { "category": "external", "summary": "1695030", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695030" }, { "category": "external", "summary": "1695042", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695042" }, { "category": "external", "summary": "1735741", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735741" }, { "category": "external", "summary": "1741860", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741860" }, { "category": "external", "summary": "1741864", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741864" }, { "category": "external", "summary": "1741868", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741868" }, { "category": "external", "summary": "JBCS-798", "url": "https://issues.redhat.com/browse/JBCS-798" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3932.json" } ], "title": "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 6", "tracking": { "current_release_date": "2024-11-15T03:18:23+00:00", "generator": { "date": "2024-11-15T03:18:23+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2019:3932", "initial_release_date": "2019-11-20T16:22:09+00:00", "revision_history": [ { "date": "2019-11-20T16:22:09+00:00", "number": "1", "summary": "Initial version" }, { "date": "2020-01-06T13:05:52+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-15T03:18:23+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat JBoss Core Services on RHEL 6 Server", "product": { "name": "Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS", "product_identification_helper": { "cpe": "cpe:/a:redhat:jboss_core_services:1::el6" } } } ], "category": "product_family", "name": "Red Hat JBoss Core Services" }, { "branches": [ { "category": "product_version", "name": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "product_id": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "product_id": "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-jansson-devel@2.11-20.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "product_id": "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-jansson-debuginfo@2.11-20.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "product_id": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "product_id": "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-63.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "product_id": "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-63.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "product_id": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "product_id": "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.1.1-25.jbcs.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "product_id": "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.1.1-25.jbcs.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "product_id": "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.1.1-25.jbcs.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "product_id": "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.1.1-25.jbcs.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "product_id": "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.1.1-25.jbcs.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "product_id": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "product_id": "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-48.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "product_id": "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-48.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "product_id": "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-48.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "product_id": "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-48.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "product_id": "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-48.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "product_id": "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-48.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "product_id": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-48.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "product_id": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-48.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "product_id": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-48.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "product_id": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "product_id": "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-brotli-devel@1.0.6-7.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "product_id": "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-brotli-debuginfo@1.0.6-7.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "product_id": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "product_id": "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.39.2-4.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "product_id": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.39.2-4.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "product_id": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "product_id": "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-libcurl@7.64.1-14.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "product_id": "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-libcurl-devel@7.64.1-14.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "product_id": "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-curl-debuginfo@7.64.1-14.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "product_id": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "product_id": "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.37-33.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "product_id": "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.37-33.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "product_id": "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.37-33.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "product_id": "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.37-33.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "product_id": "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_md@2.4.37-33.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "product_id": "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.37-33.jbcs.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "product_id": "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.37-33.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "product_id": "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.37-33.jbcs.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "product_id": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.37-33.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "product_id": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.12-9.Final_redhat_2.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "product_id": "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.46-22.redhat_1.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "product_id": "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.46-22.redhat_1.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "product_id": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.46-22.redhat_1.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "product_id": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el6?arch=i686" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "product": { "name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "product_id": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.2-16.GA.jbcs.el6?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-jansson-devel@2.11-20.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-jansson-debuginfo@2.11-20.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-63.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-63.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.1.1-25.jbcs.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.1.1-25.jbcs.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.1.1-25.jbcs.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.1.1-25.jbcs.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.1.1-25.jbcs.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-48.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-48.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-48.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-48.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-48.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-48.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-48.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-48.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-48.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-brotli-devel@1.0.6-7.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-brotli-debuginfo@1.0.6-7.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.39.2-4.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.39.2-4.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-libcurl@7.64.1-14.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-libcurl-devel@7.64.1-14.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-curl-debuginfo@7.64.1-14.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.37-33.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.37-33.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.37-33.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.37-33.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_md@2.4.37-33.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.37-33.jbcs.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.37-33.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.37-33.jbcs.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.37-33.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.12-9.Final_redhat_2.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.46-22.redhat_1.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.46-22.redhat_1.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.46-22.redhat_1.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "product": { "name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "product_id": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.2-16.GA.jbcs.el6?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "product": { "name": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "product_id": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el6?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "product": { "name": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "product_id": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el6?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "product": { "name": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "product_id": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el6?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "product": { "name": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "product_id": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el6?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "product": { "name": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "product_id": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el6?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "product": { "name": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "product_id": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el6?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "product": { "name": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "product_id": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el6?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "product": { "name": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "product_id": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el6?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "product": { "name": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el6?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "product": { "name": "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "product_id": "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.46-22.redhat_1.jbcs.el6?arch=src" } } }, { "category": "product_version", "name": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "product": { "name": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "product_id": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el6?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "product": { "name": "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "product_id": "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-manual@2.4.37-33.jbcs.el6?arch=noarch" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src" }, "product_reference": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src" }, "product_reference": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src" }, "product_reference": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src" }, "product_reference": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src" }, "product_reference": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch" }, "product_reference": "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src" }, "product_reference": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src" }, "product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src" }, "product_reference": "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src" }, "product_reference": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src" }, "product_reference": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src" }, "product_reference": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686" }, "product_reference": "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "relates_to_product_reference": "6Server-JBCS" }, { "category": "default_component_of", "full_product_name": { "name": "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", "product_id": "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" }, "product_reference": "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", "relates_to_product_reference": "6Server-JBCS" } ] }, "vulnerabilities": [ { "cve": "CVE-2018-0734", "cwe": { "id": "CWE-385", "name": "Covert Timing Channel" }, "discovery_date": "2018-10-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1644364" } ], "notes": [ { "category": "description", "text": "The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: timing side channel attack in the DSA signature algorithm", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-0734" }, { "category": "external", "summary": "RHBZ#1644364", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644364" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-0734", "url": "https://www.cve.org/CVERecord?id=CVE-2018-0734" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734" } ], "release_date": "2018-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:22:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3932" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.0" }, "products": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "openssl: timing side channel attack in the DSA signature algorithm" }, { "cve": "CVE-2018-0737", "cwe": { "id": "CWE-385", "name": "Covert Timing Channel" }, "discovery_date": "2018-04-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1568253" } ], "notes": [ { "category": "description", "text": "OpenSSL RSA key generation was found to be vulnerable to cache side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover parts of the private key.", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-0737" }, { "category": "external", "summary": "RHBZ#1568253", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568253" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-0737", "url": "https://www.cve.org/CVERecord?id=CVE-2018-0737" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0737" }, { "category": "external", "summary": "http://www.openwall.com/lists/oss-security/2018/04/16/3", "url": "http://www.openwall.com/lists/oss-security/2018/04/16/3" }, { "category": "external", "summary": "https://www.openssl.org/news/secadv/20180416.txt", "url": "https://www.openssl.org/news/secadv/20180416.txt" } ], "release_date": "2018-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:22:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3932" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 3.3, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N", "version": "3.0" }, "products": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys" }, { "acknowledgments": [ { "names": [ "Alejandro Cabrera Aldaya" ], "organization": "Universidad Tecnologica de la Habana CUJAE; Cuba" }, { "names": [ "Billy Bob Brumley", "Cesar Pereida Garcia", "Sohaib ul Hassan" ] }, { "names": [ "Nicola Tuveri" ], "organization": "Tampere University of Technology; Finland" } ], "cve": "CVE-2018-5407", "cwe": { "id": "CWE-200", "name": "Exposure of Sensitive Information to an Unauthorized Actor" }, "discovery_date": "2018-11-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1645695" } ], "notes": [ { "category": "description", "text": "A microprocessor side-channel vulnerability was found on SMT (e.g, Hyper-Threading) architectures. An attacker running a malicious process on the same core of the processor as the victim process can extract certain secret information.", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", "title": "Vulnerability summary" }, { "category": "other", "text": "This is a timing side-channel flaw on processors which implement SMT/Hyper-Threading architectures. It can result in leakage of secret data in applications such as OpenSSL that has secret dependent control flow at any granularity level. In order to exploit this flaw, the attacker needs to run a malicious process on the same core of the processor as the victim process.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-5407" }, { "category": "external", "summary": "RHBZ#1645695", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1645695" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-5407", "url": "https://www.cve.org/CVERecord?id=CVE-2018-5407" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5407" }, { "category": "external", "summary": "https://github.com/bbbrumley/portsmash", "url": "https://github.com/bbbrumley/portsmash" }, { "category": "external", "summary": "https://www.openssl.org/news/secadv/20181112.txt", "url": "https://www.openssl.org/news/secadv/20181112.txt" } ], "release_date": "2018-10-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:22:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3932" }, { "category": "workaround", "details": "At this time Red Hat Engineering is working on patches for openssl package in Red Hat Enterprise Linux 7 to address this issue. Until fixes are available, users are advised to review the guidance supplied in the L1 Terminal Fault vulnerability article: https://access.redhat.com/security/vulnerabilities/L1TF and decide what their exposure across shared CPU threads are and act accordingly.", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "PHYSICAL", "availabilityImpact": "NONE", "baseScore": 4.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:P/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N", "version": "3.0" }, "products": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)" }, { "cve": "CVE-2018-17189", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-01-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1668497" } ], "notes": [ { "category": "description", "text": "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_http2: DoS via slow, unneeded request bodies", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-17189" }, { "category": "external", "summary": "RHBZ#1668497", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668497" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-17189", "url": "https://www.cve.org/CVERecord?id=CVE-2018-17189" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-17189" } ], "release_date": "2019-01-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:22:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3932" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_http2: DoS via slow, unneeded request bodies" }, { "cve": "CVE-2018-17199", "cwe": { "id": "CWE-613", "name": "Insufficient Session Expiration" }, "discovery_date": "2019-01-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1668493" } ], "notes": [ { "category": "description", "text": "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_session_cookie does not respect expiry time", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-17199" }, { "category": "external", "summary": "RHBZ#1668493", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668493" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-17199", "url": "https://www.cve.org/CVERecord?id=CVE-2018-17199" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-17199" } ], "release_date": "2019-01-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:22:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3932" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", "version": "3.0" }, "products": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "httpd: mod_session_cookie does not respect expiry time" }, { "cve": "CVE-2019-0196", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2019-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1695030" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_http2: read-after-free on a string compare", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-0196" }, { "category": "external", "summary": "RHBZ#1695030", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695030" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-0196", "url": "https://www.cve.org/CVERecord?id=CVE-2019-0196" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0196" }, { "category": "external", "summary": "http://www.apache.org/dist/httpd/CHANGES_2.4", "url": "http://www.apache.org/dist/httpd/CHANGES_2.4" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-04-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:22:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3932" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_http2: read-after-free on a string compare" }, { "cve": "CVE-2019-0197", "cwe": { "id": "CWE-444", "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)" }, "discovery_date": "2019-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1695042" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_http2: possible crash on late upgrade", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-0197" }, { "category": "external", "summary": "RHBZ#1695042", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695042" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-0197", "url": "https://www.cve.org/CVERecord?id=CVE-2019-0197" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0197" }, { "category": "external", "summary": "http://www.apache.org/dist/httpd/CHANGES_2.4", "url": "http://www.apache.org/dist/httpd/CHANGES_2.4" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:22:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3932" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", "version": "3.0" }, "products": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_http2: possible crash on late upgrade" }, { "cve": "CVE-2019-0217", "cwe": { "id": "CWE-284", "name": "Improper Access Control" }, "discovery_date": "2019-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1695020" } ], "notes": [ { "category": "description", "text": "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_auth_digest: access control bypass due to race condition", "title": "Vulnerability summary" }, { "category": "other", "text": "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-0217" }, { "category": "external", "summary": "RHBZ#1695020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-0217", "url": "https://www.cve.org/CVERecord?id=CVE-2019-0217" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0217" }, { "category": "external", "summary": "http://www.apache.org/dist/httpd/CHANGES_2.4", "url": "http://www.apache.org/dist/httpd/CHANGES_2.4" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-04-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:22:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3932" }, { "category": "workaround", "details": "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "version": "3.0" }, "products": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "httpd: mod_auth_digest: access control bypass due to race condition" }, { "cve": "CVE-2019-9511", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-08-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1741860" } ], "notes": [ { "category": "description", "text": "A flaw was found in HTTP/2. An attacker can request a large amount of data by manipulating window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this queue can consume excess CPU, memory, or both, leading to a denial of service. The highest threat from this vulnerability is to system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "HTTP/2: large amount of data requests leads to denial of service", "title": "Vulnerability summary" }, { "category": "other", "text": "There are no mitigations available for nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-9511" }, { "category": "external", "summary": "RHBZ#1741860", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741860" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-9511", "url": "https://www.cve.org/CVERecord?id=CVE-2019-9511" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511" }, { "category": "external", "summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", "url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md" }, { "category": "external", "summary": "https://kb.cert.org/vuls/id/605641/", "url": "https://kb.cert.org/vuls/id/605641/" }, { "category": "external", "summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", "url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/" }, { "category": "external", "summary": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", "url": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/" } ], "release_date": "2019-08-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:22:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3932" }, { "category": "workaround", "details": "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i \u0027s/http2 //g\u0027 /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "HTTP/2: large amount of data requests leads to denial of service" }, { "acknowledgments": [ { "names": [ "the Envoy security team" ] } ], "cve": "CVE-2019-9513", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-08-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1735741" } ], "notes": [ { "category": "description", "text": "A flaw was found in HTTP/2. An attacker, using PRIORITY frames to flood the system, could cause excessive CPU usage and starvation of other clients. The largest threat from this vulnerability is to system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", "title": "Vulnerability summary" }, { "category": "other", "text": "This flaw has no available mitigation for packages nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-9513" }, { "category": "external", "summary": "RHBZ#1735741", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735741" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-9513", "url": "https://www.cve.org/CVERecord?id=CVE-2019-9513" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513" }, { "category": "external", "summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", "url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md" }, { "category": "external", "summary": "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", "url": "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/" }, { "category": "external", "summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", "url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/" }, { "category": "external", "summary": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", "url": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/" } ], "release_date": "2019-08-13T17:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:22:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3932" }, { "category": "workaround", "details": "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i \u0027s/http2 //g\u0027 /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "HTTP/2: flood using PRIORITY frames results in excessive resource consumption" }, { "cve": "CVE-2019-9516", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-08-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1741864" } ], "notes": [ { "category": "description", "text": "A flaw was found in HTTP/2. An attacker, sending a stream of header with a 0-length header name and a 0-length header value, could cause some implementations to allocate memory for these headers and keep the allocations alive until the session dies. The can consume excess memory, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "HTTP/2: 0-length headers lead to denial of service", "title": "Vulnerability summary" }, { "category": "other", "text": "This flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-9516" }, { "category": "external", "summary": "RHBZ#1741864", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741864" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-9516", "url": "https://www.cve.org/CVERecord?id=CVE-2019-9516" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516" }, { "category": "external", "summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", "url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md" }, { "category": "external", "summary": "https://github.com/nghttp2/nghttp2/issues/1382#", "url": "https://github.com/nghttp2/nghttp2/issues/1382#" }, { "category": "external", "summary": "https://kb.cert.org/vuls/id/605641/", "url": "https://kb.cert.org/vuls/id/605641/" }, { "category": "external", "summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", "url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/" }, { "category": "external", "summary": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", "url": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/" } ], "release_date": "2019-08-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:22:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3932" }, { "category": "workaround", "details": "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i \u0027s/http2 //g\u0027 /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "HTTP/2: 0-length headers lead to denial of service" }, { "cve": "CVE-2019-9517", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-08-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1741868" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in HTTP/2. An attacker can open a HTTP/2 window so the peer can send without constraint. The TCP window remains closed so the peer cannot write the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the server\u0027s queue is setup, the responses can consume excess memory, CPU, or both, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "HTTP/2: request for large response leads to denial of service", "title": "Vulnerability summary" }, { "category": "other", "text": "The package httpd versions as shipped with Red Hat Enterprise Linux 5, 6 and 7 are not affected by this issue as HTTP/2 support is not provided.\nThis flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-9517" }, { "category": "external", "summary": "RHBZ#1741868", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741868" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-9517", "url": "https://www.cve.org/CVERecord?id=CVE-2019-9517" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517" }, { "category": "external", "summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", "url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md" }, { "category": "external", "summary": "https://kb.cert.org/vuls/id/605641/", "url": "https://kb.cert.org/vuls/id/605641/" }, { "category": "external", "summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", "url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/" } ], "release_date": "2019-08-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:22:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3932" }, { "category": "workaround", "details": "The httpd version shipped with Red Hat Enterprise Linux 8 provides HTTP/2 support through mod_http2 package. While mod_http2 package is not updated, users can disable HTTP/2 support as mitigation action by executing the following steps:\n\n1. Stop httpd service:\n$ systemctl stop httpd\n\n2. Remove http/2 protocol support from configuration files:\n$ sed -i \u0027s/\\(h2\\)\\|\\(h2c\\)//g\u0027 \u003chttpd_config_file\u003e\n\n3. Validate configuration files to make sure all syntax is valid:\n$ apachectl configtest\n\n4. Restart httpd service:\n$ systemctl start httpd", "product_ids": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "HTTP/2: request for large response leads to denial of service" } ] }
rhsa-2020_4751
Vulnerability from csaf_redhat
Published
2020-11-04 01:44
Modified
2024-11-15 06:18
Summary
Red Hat Security Advisory: httpd:2.4 security, bug fix, and enhancement update
Notes
Topic
An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.
The following packages have been upgraded to a later upstream version: mod_http2 (1.15.7). (BZ#1814236)
Security Fix(es):
* httpd: memory corruption on early pushes (CVE-2019-10081)
* httpd: read-after-free in h2 connection shutdown (CVE-2019-10082)
* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)
* httpd: mod_rewrite configurations vulnerable to open redirect (CVE-2020-1927)
* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)
* httpd: mod_http2: read-after-free on a string compare (CVE-2019-0196)
* httpd: mod_http2: possible crash on late upgrade (CVE-2019-0197)
* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)
* httpd: mod_rewrite potential open redirect (CVE-2019-10098)
* httpd: mod_proxy_ftp use of uninitialized value (CVE-2020-1934)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.\n\nThe following packages have been upgraded to a later upstream version: mod_http2 (1.15.7). (BZ#1814236)\n\nSecurity Fix(es):\n\n* httpd: memory corruption on early pushes (CVE-2019-10081)\n\n* httpd: read-after-free in h2 connection shutdown (CVE-2019-10082)\n\n* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)\n\n* httpd: mod_rewrite configurations vulnerable to open redirect (CVE-2020-1927)\n\n* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)\n\n* httpd: mod_http2: read-after-free on a string compare (CVE-2019-0196)\n\n* httpd: mod_http2: possible crash on late upgrade (CVE-2019-0197)\n\n* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)\n\n* httpd: mod_rewrite potential open redirect (CVE-2019-10098)\n\n* httpd: mod_proxy_ftp use of uninitialized value (CVE-2020-1934)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2020:4751", "url": "https://access.redhat.com/errata/RHSA-2020:4751" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/", "url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/" }, { "category": "external", "summary": "1209162", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1209162" }, { "category": "external", "summary": "1668497", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668497" }, { "category": "external", "summary": "1695030", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695030" }, { "category": "external", "summary": "1695042", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695042" }, { "category": "external", "summary": "1743956", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743956" }, { "category": "external", "summary": "1743959", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743959" }, { "category": "external", "summary": "1743966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743966" }, { "category": "external", "summary": "1743974", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743974" }, { "category": "external", "summary": "1743996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743996" }, { "category": "external", "summary": "1771847", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771847" }, { "category": "external", "summary": "1814236", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1814236" }, { "category": "external", "summary": "1820761", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1820761" }, { "category": "external", "summary": "1820772", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1820772" }, { "category": "external", "summary": "1832844", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1832844" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4751.json" } ], "title": "Red Hat Security Advisory: httpd:2.4 security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-15T06:18:55+00:00", "generator": { "date": "2024-11-15T06:18:55+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2020:4751", "initial_release_date": "2020-11-04T01:44:47+00:00", "revision_history": [ { "date": "2020-11-04T01:44:47+00:00", "number": "1", "summary": "Initial version" }, { "date": "2020-11-04T01:44:47+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-15T06:18:55+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream (v. 8)", "product": { "name": "Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::appstream" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "httpd:2.4:8030020200818000036:30b713e6", "product": { "name": "httpd:2.4:8030020200818000036:30b713e6", "product_id": "httpd:2.4:8030020200818000036:30b713e6", "product_identification_helper": { "purl": "pkg:rpmmod/redhat/httpd@2.4:8030020200818000036:30b713e6" } } }, { "category": "product_version", "name": "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "product": { "name": "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "product_id": "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-filesystem@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=noarch" } } }, { "category": "product_version", "name": "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "product": { "name": "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "product_id": "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-manual@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "product": { "name": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "product_id": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=src" } } }, { "category": "product_version", "name": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "product": { "name": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "product_id": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=src" } } }, { "category": "product_version", "name": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "product": { "name": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "product_id": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product": { "name": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_id": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product": { "name": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_id": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product": { "name": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_id": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product": { "name": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_id": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product": { "name": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_id": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64" } } }, { "category": "product_version", "name": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product": { "name": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_id": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64" } } }, { "category": "product_version", "name": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "product": { "name": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "product_id": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=x86_64" } } }, { "category": "product_version", "name": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "product": { "name": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "product_id": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=x86_64" } } }, { "category": "product_version", "name": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "product": { "name": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "product_id": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=x86_64" } } }, { "category": "product_version", "name": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product": { "name": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_id": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64" } } }, { "category": "product_version", "name": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product": { "name": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_id": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64" } } }, { "category": "product_version", "name": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "product": { "name": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "product_id": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "product": { "name": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "product_id": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "product": { "name": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "product_id": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product": { "name": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_id": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product": { "name": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_id": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product": { "name": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_id": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64" } } }, { "category": "product_version", "name": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product": { "name": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_id": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64" } } }, { "category": "product_version", "name": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product": { "name": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_id": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product": { "name": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_id": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product": { "name": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_id": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x" } } }, { "category": "product_version", "name": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product": { "name": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_id": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x" } } }, { "category": "product_version", "name": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product": { "name": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_id": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x" } } }, { "category": "product_version", "name": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product": { "name": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_id": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x" } } }, { "category": "product_version", "name": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product": { "name": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_id": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x" } } }, { "category": "product_version", "name": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product": { "name": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_id": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x" } } }, { "category": "product_version", "name": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "product": { "name": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "product_id": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=s390x" } } }, { "category": "product_version", "name": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "product": { "name": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "product_id": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=s390x" } } }, { "category": "product_version", "name": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "product": { "name": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "product_id": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=s390x" } } }, { "category": "product_version", "name": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product": { "name": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_id": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x" } } }, { "category": "product_version", "name": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product": { "name": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_id": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x" } } }, { "category": "product_version", "name": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "product": { "name": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "product_id": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "product": { "name": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "product_id": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "product": { "name": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "product_id": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product": { "name": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_id": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product": { "name": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_id": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product": { "name": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_id": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x" } } }, { "category": "product_version", "name": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product": { "name": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_id": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x" } } }, { "category": "product_version", "name": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product": { "name": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_id": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product": { "name": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_id": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x\u0026epoch=1" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product": { "name": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_id": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product": { "name": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_id": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product": { "name": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_id": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product": { "name": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_id": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product": { "name": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_id": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le" } } }, { "category": "product_version", "name": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product": { "name": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_id": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le" } } }, { "category": "product_version", "name": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "product": { "name": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "product_id": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=ppc64le" } } }, { "category": "product_version", "name": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "product": { "name": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "product_id": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=ppc64le" } } }, { "category": "product_version", "name": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "product": { "name": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "product_id": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=ppc64le" } } }, { "category": "product_version", "name": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product": { "name": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_id": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le" } } }, { "category": "product_version", "name": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product": { "name": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_id": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le" } } }, { "category": "product_version", "name": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "product": { "name": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "product_id": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "product": { "name": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "product_id": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "product": { "name": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "product_id": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product": { "name": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_id": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product": { "name": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_id": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product": { "name": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_id": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le" } } }, { "category": "product_version", "name": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product": { "name": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_id": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le" } } }, { "category": "product_version", "name": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product": { "name": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_id": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product": { "name": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_id": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product": { "name": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_id": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product": { "name": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_id": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product": { "name": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_id": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product": { "name": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_id": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product": { "name": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_id": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64" } } }, { "category": "product_version", "name": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product": { "name": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_id": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64" } } }, { "category": "product_version", "name": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "product": { "name": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "product_id": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=aarch64" } } }, { "category": "product_version", "name": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "product": { "name": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "product_id": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=aarch64" } } }, { "category": "product_version", "name": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "product": { "name": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "product_id": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=aarch64" } } }, { "category": "product_version", "name": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product": { "name": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_id": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64" } } }, { "category": "product_version", "name": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product": { "name": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_id": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64" } } }, { "category": "product_version", "name": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "product": { "name": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "product_id": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "product": { "name": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "product_id": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "product": { "name": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "product_id": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product": { "name": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_id": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product": { "name": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_id": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product": { "name": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_id": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64" } } }, { "category": "product_version", "name": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product": { "name": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_id": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64" } } }, { "category": "product_version", "name": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product": { "name": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_id": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product": { "name": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_id": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64\u0026epoch=1" } } } ], "category": "architecture", "name": "aarch64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, "product_reference": "httpd:2.4:8030020200818000036:30b713e6", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64" }, "product_reference": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le" }, "product_reference": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x" }, "product_reference": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src" }, "product_reference": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" }, "product_reference": "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64" }, "product_reference": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le" }, "product_reference": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x" }, "product_reference": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" }, "product_reference": "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64" }, "product_reference": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le" }, "product_reference": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x" }, "product_reference": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" }, "product_reference": "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64" }, "product_reference": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le" }, "product_reference": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x" }, "product_reference": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" }, "product_reference": "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch" }, "product_reference": "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch" }, "product_reference": "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64" }, "product_reference": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le" }, "product_reference": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x" }, "product_reference": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" }, "product_reference": "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64" }, "product_reference": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le" }, "product_reference": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x" }, "product_reference": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" }, "product_reference": "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64" }, "product_reference": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le" }, "product_reference": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x" }, "product_reference": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src" }, "product_reference": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64" }, "product_reference": "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64" }, "product_reference": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le" }, "product_reference": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x" }, "product_reference": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64" }, "product_reference": "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64" }, "product_reference": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le" }, "product_reference": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x" }, "product_reference": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64" }, "product_reference": "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64" }, "product_reference": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le" }, "product_reference": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x" }, "product_reference": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" }, "product_reference": "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64" }, "product_reference": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le" }, "product_reference": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x" }, "product_reference": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" }, "product_reference": "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64" }, "product_reference": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le" }, "product_reference": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x" }, "product_reference": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src" }, "product_reference": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64" }, "product_reference": "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64" }, "product_reference": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le" }, "product_reference": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x" }, "product_reference": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64" }, "product_reference": "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64" }, "product_reference": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le" }, "product_reference": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x" }, "product_reference": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64" }, "product_reference": "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64" }, "product_reference": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le" }, "product_reference": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x" }, "product_reference": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" }, "product_reference": "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64" }, "product_reference": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le" }, "product_reference": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x" }, "product_reference": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" }, "product_reference": "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64" }, "product_reference": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le" }, "product_reference": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x" }, "product_reference": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" }, "product_reference": "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64" }, "product_reference": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le" }, "product_reference": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x" }, "product_reference": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" }, "product_reference": "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64" }, "product_reference": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le" }, "product_reference": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x" }, "product_reference": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" }, "product_reference": "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64" }, "product_reference": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le" }, "product_reference": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x" }, "product_reference": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" }, "product_reference": "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6" } ] }, "vulnerabilities": [ { "cve": "CVE-2018-17189", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-01-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1668497" } ], "notes": [ { "category": "description", "text": "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_http2: DoS via slow, unneeded request bodies", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-17189" }, { "category": "external", "summary": "RHBZ#1668497", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668497" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-17189", "url": "https://www.cve.org/CVERecord?id=CVE-2018-17189" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-17189" } ], "release_date": "2019-01-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:44:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4751" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_http2: DoS via slow, unneeded request bodies" }, { "cve": "CVE-2019-0196", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2019-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1695030" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_http2: read-after-free on a string compare", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-0196" }, { "category": "external", "summary": "RHBZ#1695030", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695030" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-0196", "url": "https://www.cve.org/CVERecord?id=CVE-2019-0196" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0196" }, { "category": "external", "summary": "http://www.apache.org/dist/httpd/CHANGES_2.4", "url": "http://www.apache.org/dist/httpd/CHANGES_2.4" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-04-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:44:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4751" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_http2: read-after-free on a string compare" }, { "cve": "CVE-2019-0197", "cwe": { "id": "CWE-444", "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)" }, "discovery_date": "2019-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1695042" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_http2: possible crash on late upgrade", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-0197" }, { "category": "external", "summary": "RHBZ#1695042", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695042" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-0197", "url": "https://www.cve.org/CVERecord?id=CVE-2019-0197" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0197" }, { "category": "external", "summary": "http://www.apache.org/dist/httpd/CHANGES_2.4", "url": "http://www.apache.org/dist/httpd/CHANGES_2.4" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:44:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4751" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", "version": "3.0" }, "products": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_http2: possible crash on late upgrade" }, { "cve": "CVE-2019-10081", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-08-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1743966" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in Apache httpd, in mod_http2. Under certain circumstances, HTTP/2 early pushes could lead to memory corruption, causing a server to crash.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: memory corruption on early pushes", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-10081" }, { "category": "external", "summary": "RHBZ#1743966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-10081", "url": "https://www.cve.org/CVERecord?id=CVE-2019-10081" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-10081", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10081" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-08-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:44:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4751" }, { "category": "workaround", "details": "This flaw is only exploitable if Apache httpd is configured to respond to HTTP/2 requests, which is done by including \"h2\" or \"h2c\" in the \"Protocols\" list in a configuration file. The following command can be used to search for possible vulnerable configurations: \n\n grep -R \u0027^\\s*Protocols\\\u003e.*\\\u003ch2\\\u003e\u0027 /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_http2.html", "product_ids": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "httpd: memory corruption on early pushes" }, { "cve": "CVE-2019-10082", "discovery_date": "2019-08-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1743974" } ], "notes": [ { "category": "description", "text": "A read-after-free vulnerability was discovered in Apache httpd, in mod_http2. A specially crafted http/2 client session could cause the server to read memory that was previously freed during connection shutdown, potentially leading to a crash.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: read-after-free in h2 connection shutdown", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-10082" }, { "category": "external", "summary": "RHBZ#1743974", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743974" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-10082", "url": "https://www.cve.org/CVERecord?id=CVE-2019-10082" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-10082", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10082" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-08-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:44:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4751" }, { "category": "workaround", "details": "This flaw is only exploitable if Apache httpd is configured to respond to HTTP/2 requests, which is done by including \"h2\" or \"h2c\" in the \"Protocols\" list in a configuration file. The following command can be used to search for possible vulnerable configurations: \n\n grep -R \u0027^\\s*Protocols\\\u003e.*\\\u003ch2\\\u003e\u0027 /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_http2.html", "product_ids": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", "version": "3.0" }, "products": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "httpd: read-after-free in h2 connection shutdown" }, { "cve": "CVE-2019-10092", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2019-08-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1743956" } ], "notes": [ { "category": "description", "text": "A cross-site scripting vulnerability was found in Apache httpd, affecting the mod_proxy error page. Under certain circumstances, a crafted link could inject content into the HTML displayed in the error page, potentially leading to client-side exploitation.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: limited cross-site scripting in mod_proxy error page", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-10092" }, { "category": "external", "summary": "RHBZ#1743956", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743956" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-10092", "url": "https://www.cve.org/CVERecord?id=CVE-2019-10092" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-10092", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10092" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-08-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:44:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4751" }, { "category": "workaround", "details": "This flaw is only exploitable if Proxy* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R \u0027^\\s*Proxy\u0027 /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_proxy.html", "product_ids": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.0" }, "products": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: limited cross-site scripting in mod_proxy error page" }, { "cve": "CVE-2019-10097", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2019-08-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1743996" } ], "notes": [ { "category": "description", "text": "A vulnerability was discovered in Apache httpd, in mod_remoteip. A trusted proxy using the \"PROXY\" protocol could send specially crafted headers that can cause httpd to experience a stack buffer overflow or NULL pointer dereference, leading to a crash or other potential consequences.\r\n\r\nThis issue could only be exploited by configured trusted intermediate proxy servers. HTTP clients such as browsers could not exploit the vulnerability.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: null-pointer dereference in mod_remoteip", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-10097" }, { "category": "external", "summary": "RHBZ#1743996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743996" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-10097", "url": "https://www.cve.org/CVERecord?id=CVE-2019-10097" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-10097", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10097" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-08-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:44:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4751" }, { "category": "workaround", "details": "This flaw is only exploitable if RemoteIP* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R \u0027^\\s*RemoteIP\u0027 /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_remoteip.html", "product_ids": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.6, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "httpd: null-pointer dereference in mod_remoteip" }, { "cve": "CVE-2019-10098", "discovery_date": "2019-08-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1743959" } ], "notes": [ { "category": "description", "text": "A vulnerability was discovered in Apache httpd, in mod_rewrite. Certain self-referential mod_rewrite rules could be fooled by encoded newlines, causing them to redirect to an unexpected location. An attacker could abuse this flaw in a phishing attack or as part of a client-side attack on browsers.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_rewrite potential open redirect", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-10098" }, { "category": "external", "summary": "RHBZ#1743959", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743959" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-10098", "url": "https://www.cve.org/CVERecord?id=CVE-2019-10098" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-10098", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10098" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-08-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:44:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4751" }, { "category": "workaround", "details": "This flaw requires the use of certain Rewrite configuration directives. The following command can be used to search for possible vulnerable configurations:\n\n grep -R \u0027^\\s*Rewrite\u0027 /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_rewrite.html", "product_ids": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 3.7, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N", "version": "3.0" }, "products": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_rewrite potential open redirect" }, { "cve": "CVE-2020-1927", "cwe": { "id": "CWE-601", "name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)" }, "discovery_date": "2020-04-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1820761" } ], "notes": [ { "category": "description", "text": "A flaw was found in Apache HTTP Server (httpd) versions 2.4.0 to 2.4.41. Redirects configured with mod_rewrite that were intended to be self-referential might be fooled by encoded newlines and redirected instead to an unexpected URL within the request URL.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_rewrite configurations vulnerable to open redirect", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue only affects httpd versions between 2.4.0 and 2.4.41. Therefore Red Hat Enterprise Linux 5 and 6 are not affected by this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-1927" }, { "category": "external", "summary": "RHBZ#1820761", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1820761" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-1927", "url": "https://www.cve.org/CVERecord?id=CVE-2020-1927" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-1927", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-1927" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2020-04-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:44:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4751" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1" }, "products": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "httpd: mod_rewrite configurations vulnerable to open redirect" }, { "cve": "CVE-2020-1934", "cwe": { "id": "CWE-456", "name": "Missing Initialization of a Variable" }, "discovery_date": "2020-04-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1820772" } ], "notes": [ { "category": "description", "text": "A flaw was found in Apache\u0027s HTTP server (httpd) .The mod_proxy_ftp module may use uninitialized memory with proxying to a malicious FTP server. The highest threat from this vulnerability is to data confidentiality.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_proxy_ftp use of uninitialized value", "title": "Vulnerability summary" }, { "category": "other", "text": "This flaw is caused by use of an uninitialized memory variable. Practically this has no impact, but in some corner cases it is possible that the contents of this variable could be read by a remote process, causing loss of confidentiality as a result of this. There is no evidence of code execution.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-1934" }, { "category": "external", "summary": "RHBZ#1820772", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1820772" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-1934", "url": "https://www.cve.org/CVERecord?id=CVE-2020-1934" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-1934", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-1934" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2020-04-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:44:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", "product_ids": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4751" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 3.7, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1" }, "products": [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_proxy_ftp use of uninitialized value" } ] }
rhsa-2019_3935
Vulnerability from csaf_redhat
Published
2019-11-20 16:08
Modified
2024-11-15 03:18
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release
Notes
Topic
Red Hat JBoss Core Services Pack Apache Server 2.4.37 zip release
for RHEL 6, RHEL 7 and Microsoft Windows is available.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience.
This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Red Hat JBoss Core Services Pack Apache Server 2.4.37 zip release\nfor RHEL 6, RHEL 7 and Microsoft Windows is available.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience.\n\nThis release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2019:3935", "url": "https://access.redhat.com/errata/RHSA-2019:3935" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "1568253", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568253" }, { "category": "external", "summary": "1644364", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644364" }, { "category": "external", "summary": "1645695", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1645695" }, { "category": "external", "summary": "1668493", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668493" }, { "category": "external", "summary": "1668497", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668497" }, { "category": "external", "summary": "1695020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020" }, { "category": "external", "summary": "1695030", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695030" }, { "category": "external", "summary": "1695042", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695042" }, { "category": "external", "summary": "1735741", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735741" }, { "category": "external", "summary": "1741860", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741860" }, { "category": "external", "summary": "1741864", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741864" }, { "category": "external", "summary": "1741868", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741868" }, { "category": "external", "summary": "JBCS-798", "url": "https://issues.redhat.com/browse/JBCS-798" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3935.json" } ], "title": "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release", "tracking": { "current_release_date": "2024-11-15T03:18:09+00:00", "generator": { "date": "2024-11-15T03:18:09+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2019:3935", "initial_release_date": "2019-11-20T16:08:18+00:00", "revision_history": [ { "date": "2019-11-20T16:08:18+00:00", "number": "1", "summary": "Initial version" }, { "date": "2020-01-06T13:01:52+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-15T03:18:09+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat JBoss Core Services 1", "product": { "name": "Red Hat JBoss Core Services 1", "product_id": "Red Hat JBoss Core Services 1", "product_identification_helper": { "cpe": "cpe:/a:redhat:jboss_core_services:1" } } } ], "category": "product_family", "name": "Red Hat JBoss Core Services" } ], "category": "vendor", "name": "Red Hat" } ] }, "vulnerabilities": [ { "cve": "CVE-2018-0734", "cwe": { "id": "CWE-385", "name": "Covert Timing Channel" }, "discovery_date": "2018-10-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1644364" } ], "notes": [ { "category": "description", "text": "The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: timing side channel attack in the DSA signature algorithm", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Red Hat JBoss Core Services 1" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-0734" }, { "category": "external", "summary": "RHBZ#1644364", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644364" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-0734", "url": "https://www.cve.org/CVERecord?id=CVE-2018-0734" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734" } ], "release_date": "2018-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:08:18+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "Red Hat JBoss Core Services 1" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3935" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.0" }, "products": [ "Red Hat JBoss Core Services 1" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "openssl: timing side channel attack in the DSA signature algorithm" }, { "cve": "CVE-2018-0737", "cwe": { "id": "CWE-385", "name": "Covert Timing Channel" }, "discovery_date": "2018-04-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1568253" } ], "notes": [ { "category": "description", "text": "OpenSSL RSA key generation was found to be vulnerable to cache side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover parts of the private key.", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Red Hat JBoss Core Services 1" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-0737" }, { "category": "external", "summary": "RHBZ#1568253", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568253" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-0737", "url": "https://www.cve.org/CVERecord?id=CVE-2018-0737" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0737" }, { "category": "external", "summary": "http://www.openwall.com/lists/oss-security/2018/04/16/3", "url": "http://www.openwall.com/lists/oss-security/2018/04/16/3" }, { "category": "external", "summary": "https://www.openssl.org/news/secadv/20180416.txt", "url": "https://www.openssl.org/news/secadv/20180416.txt" } ], "release_date": "2018-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:08:18+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "Red Hat JBoss Core Services 1" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3935" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 3.3, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N", "version": "3.0" }, "products": [ "Red Hat JBoss Core Services 1" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys" }, { "acknowledgments": [ { "names": [ "Alejandro Cabrera Aldaya" ], "organization": "Universidad Tecnologica de la Habana CUJAE; Cuba" }, { "names": [ "Billy Bob Brumley", "Cesar Pereida Garcia", "Sohaib ul Hassan" ] }, { "names": [ "Nicola Tuveri" ], "organization": "Tampere University of Technology; Finland" } ], "cve": "CVE-2018-5407", "cwe": { "id": "CWE-200", "name": "Exposure of Sensitive Information to an Unauthorized Actor" }, "discovery_date": "2018-11-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1645695" } ], "notes": [ { "category": "description", "text": "A microprocessor side-channel vulnerability was found on SMT (e.g, Hyper-Threading) architectures. An attacker running a malicious process on the same core of the processor as the victim process can extract certain secret information.", "title": "Vulnerability description" }, { "category": "summary", "text": "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", "title": "Vulnerability summary" }, { "category": "other", "text": "This is a timing side-channel flaw on processors which implement SMT/Hyper-Threading architectures. It can result in leakage of secret data in applications such as OpenSSL that has secret dependent control flow at any granularity level. In order to exploit this flaw, the attacker needs to run a malicious process on the same core of the processor as the victim process.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Red Hat JBoss Core Services 1" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-5407" }, { "category": "external", "summary": "RHBZ#1645695", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1645695" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-5407", "url": "https://www.cve.org/CVERecord?id=CVE-2018-5407" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5407" }, { "category": "external", "summary": "https://github.com/bbbrumley/portsmash", "url": "https://github.com/bbbrumley/portsmash" }, { "category": "external", "summary": "https://www.openssl.org/news/secadv/20181112.txt", "url": "https://www.openssl.org/news/secadv/20181112.txt" } ], "release_date": "2018-10-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:08:18+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "Red Hat JBoss Core Services 1" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3935" }, { "category": "workaround", "details": "At this time Red Hat Engineering is working on patches for openssl package in Red Hat Enterprise Linux 7 to address this issue. Until fixes are available, users are advised to review the guidance supplied in the L1 Terminal Fault vulnerability article: https://access.redhat.com/security/vulnerabilities/L1TF and decide what their exposure across shared CPU threads are and act accordingly.", "product_ids": [ "Red Hat JBoss Core Services 1" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "PHYSICAL", "availabilityImpact": "NONE", "baseScore": 4.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:P/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N", "version": "3.0" }, "products": [ "Red Hat JBoss Core Services 1" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)" }, { "cve": "CVE-2018-17189", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-01-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1668497" } ], "notes": [ { "category": "description", "text": "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_http2: DoS via slow, unneeded request bodies", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Red Hat JBoss Core Services 1" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-17189" }, { "category": "external", "summary": "RHBZ#1668497", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668497" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-17189", "url": "https://www.cve.org/CVERecord?id=CVE-2018-17189" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-17189" } ], "release_date": "2019-01-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:08:18+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "Red Hat JBoss Core Services 1" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3935" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "Red Hat JBoss Core Services 1" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_http2: DoS via slow, unneeded request bodies" }, { "cve": "CVE-2018-17199", "cwe": { "id": "CWE-613", "name": "Insufficient Session Expiration" }, "discovery_date": "2019-01-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1668493" } ], "notes": [ { "category": "description", "text": "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_session_cookie does not respect expiry time", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Red Hat JBoss Core Services 1" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2018-17199" }, { "category": "external", "summary": "RHBZ#1668493", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668493" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2018-17199", "url": "https://www.cve.org/CVERecord?id=CVE-2018-17199" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-17199" } ], "release_date": "2019-01-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:08:18+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "Red Hat JBoss Core Services 1" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3935" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", "version": "3.0" }, "products": [ "Red Hat JBoss Core Services 1" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "httpd: mod_session_cookie does not respect expiry time" }, { "cve": "CVE-2019-0196", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2019-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1695030" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_http2: read-after-free on a string compare", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Red Hat JBoss Core Services 1" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-0196" }, { "category": "external", "summary": "RHBZ#1695030", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695030" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-0196", "url": "https://www.cve.org/CVERecord?id=CVE-2019-0196" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0196" }, { "category": "external", "summary": "http://www.apache.org/dist/httpd/CHANGES_2.4", "url": "http://www.apache.org/dist/httpd/CHANGES_2.4" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-04-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:08:18+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "Red Hat JBoss Core Services 1" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3935" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "Red Hat JBoss Core Services 1" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_http2: read-after-free on a string compare" }, { "cve": "CVE-2019-0197", "cwe": { "id": "CWE-444", "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)" }, "discovery_date": "2019-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1695042" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_http2: possible crash on late upgrade", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Red Hat JBoss Core Services 1" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-0197" }, { "category": "external", "summary": "RHBZ#1695042", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695042" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-0197", "url": "https://www.cve.org/CVERecord?id=CVE-2019-0197" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0197" }, { "category": "external", "summary": "http://www.apache.org/dist/httpd/CHANGES_2.4", "url": "http://www.apache.org/dist/httpd/CHANGES_2.4" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:08:18+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "Red Hat JBoss Core Services 1" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3935" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", "version": "3.0" }, "products": [ "Red Hat JBoss Core Services 1" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_http2: possible crash on late upgrade" }, { "cve": "CVE-2019-0217", "cwe": { "id": "CWE-284", "name": "Improper Access Control" }, "discovery_date": "2019-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1695020" } ], "notes": [ { "category": "description", "text": "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_auth_digest: access control bypass due to race condition", "title": "Vulnerability summary" }, { "category": "other", "text": "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Red Hat JBoss Core Services 1" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-0217" }, { "category": "external", "summary": "RHBZ#1695020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-0217", "url": "https://www.cve.org/CVERecord?id=CVE-2019-0217" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0217" }, { "category": "external", "summary": "http://www.apache.org/dist/httpd/CHANGES_2.4", "url": "http://www.apache.org/dist/httpd/CHANGES_2.4" }, { "category": "external", "summary": "https://httpd.apache.org/security/vulnerabilities_24.html", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" } ], "release_date": "2019-04-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:08:18+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "Red Hat JBoss Core Services 1" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3935" }, { "category": "workaround", "details": "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", "product_ids": [ "Red Hat JBoss Core Services 1" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "version": "3.0" }, "products": [ "Red Hat JBoss Core Services 1" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "httpd: mod_auth_digest: access control bypass due to race condition" }, { "cve": "CVE-2019-9511", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-08-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1741860" } ], "notes": [ { "category": "description", "text": "A flaw was found in HTTP/2. An attacker can request a large amount of data by manipulating window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this queue can consume excess CPU, memory, or both, leading to a denial of service. The highest threat from this vulnerability is to system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "HTTP/2: large amount of data requests leads to denial of service", "title": "Vulnerability summary" }, { "category": "other", "text": "There are no mitigations available for nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Red Hat JBoss Core Services 1" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-9511" }, { "category": "external", "summary": "RHBZ#1741860", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741860" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-9511", "url": "https://www.cve.org/CVERecord?id=CVE-2019-9511" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511" }, { "category": "external", "summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", "url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md" }, { "category": "external", "summary": "https://kb.cert.org/vuls/id/605641/", "url": "https://kb.cert.org/vuls/id/605641/" }, { "category": "external", "summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", "url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/" }, { "category": "external", "summary": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", "url": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/" } ], "release_date": "2019-08-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:08:18+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "Red Hat JBoss Core Services 1" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3935" }, { "category": "workaround", "details": "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i \u0027s/http2 //g\u0027 /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", "product_ids": [ "Red Hat JBoss Core Services 1" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "Red Hat JBoss Core Services 1" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "HTTP/2: large amount of data requests leads to denial of service" }, { "acknowledgments": [ { "names": [ "the Envoy security team" ] } ], "cve": "CVE-2019-9513", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-08-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1735741" } ], "notes": [ { "category": "description", "text": "A flaw was found in HTTP/2. An attacker, using PRIORITY frames to flood the system, could cause excessive CPU usage and starvation of other clients. The largest threat from this vulnerability is to system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", "title": "Vulnerability summary" }, { "category": "other", "text": "This flaw has no available mitigation for packages nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Red Hat JBoss Core Services 1" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-9513" }, { "category": "external", "summary": "RHBZ#1735741", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735741" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-9513", "url": "https://www.cve.org/CVERecord?id=CVE-2019-9513" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513" }, { "category": "external", "summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", "url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md" }, { "category": "external", "summary": "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", "url": "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/" }, { "category": "external", "summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", "url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/" }, { "category": "external", "summary": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", "url": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/" } ], "release_date": "2019-08-13T17:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:08:18+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "Red Hat JBoss Core Services 1" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3935" }, { "category": "workaround", "details": "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i \u0027s/http2 //g\u0027 /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", "product_ids": [ "Red Hat JBoss Core Services 1" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "Red Hat JBoss Core Services 1" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "HTTP/2: flood using PRIORITY frames results in excessive resource consumption" }, { "cve": "CVE-2019-9516", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-08-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1741864" } ], "notes": [ { "category": "description", "text": "A flaw was found in HTTP/2. An attacker, sending a stream of header with a 0-length header name and a 0-length header value, could cause some implementations to allocate memory for these headers and keep the allocations alive until the session dies. The can consume excess memory, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "HTTP/2: 0-length headers lead to denial of service", "title": "Vulnerability summary" }, { "category": "other", "text": "This flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Red Hat JBoss Core Services 1" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-9516" }, { "category": "external", "summary": "RHBZ#1741864", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741864" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-9516", "url": "https://www.cve.org/CVERecord?id=CVE-2019-9516" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516" }, { "category": "external", "summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", "url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md" }, { "category": "external", "summary": "https://github.com/nghttp2/nghttp2/issues/1382#", "url": "https://github.com/nghttp2/nghttp2/issues/1382#" }, { "category": "external", "summary": "https://kb.cert.org/vuls/id/605641/", "url": "https://kb.cert.org/vuls/id/605641/" }, { "category": "external", "summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", "url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/" }, { "category": "external", "summary": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", "url": "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/" } ], "release_date": "2019-08-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:08:18+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "Red Hat JBoss Core Services 1" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3935" }, { "category": "workaround", "details": "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i \u0027s/http2 //g\u0027 /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", "product_ids": [ "Red Hat JBoss Core Services 1" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "Red Hat JBoss Core Services 1" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "HTTP/2: 0-length headers lead to denial of service" }, { "cve": "CVE-2019-9517", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2019-08-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1741868" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in HTTP/2. An attacker can open a HTTP/2 window so the peer can send without constraint. The TCP window remains closed so the peer cannot write the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the server\u0027s queue is setup, the responses can consume excess memory, CPU, or both, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "HTTP/2: request for large response leads to denial of service", "title": "Vulnerability summary" }, { "category": "other", "text": "The package httpd versions as shipped with Red Hat Enterprise Linux 5, 6 and 7 are not affected by this issue as HTTP/2 support is not provided.\nThis flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "Red Hat JBoss Core Services 1" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-9517" }, { "category": "external", "summary": "RHBZ#1741868", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741868" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-9517", "url": "https://www.cve.org/CVERecord?id=CVE-2019-9517" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517" }, { "category": "external", "summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", "url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md" }, { "category": "external", "summary": "https://kb.cert.org/vuls/id/605641/", "url": "https://kb.cert.org/vuls/id/605641/" }, { "category": "external", "summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", "url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/" } ], "release_date": "2019-08-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2019-11-20T16:08:18+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "Red Hat JBoss Core Services 1" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2019:3935" }, { "category": "workaround", "details": "The httpd version shipped with Red Hat Enterprise Linux 8 provides HTTP/2 support through mod_http2 package. While mod_http2 package is not updated, users can disable HTTP/2 support as mitigation action by executing the following steps:\n\n1. Stop httpd service:\n$ systemctl stop httpd\n\n2. Remove http/2 protocol support from configuration files:\n$ sed -i \u0027s/\\(h2\\)\\|\\(h2c\\)//g\u0027 \u003chttpd_config_file\u003e\n\n3. Validate configuration files to make sure all syntax is valid:\n$ apachectl configtest\n\n4. Restart httpd service:\n$ systemctl start httpd", "product_ids": [ "Red Hat JBoss Core Services 1" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "Red Hat JBoss Core Services 1" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "HTTP/2: request for large response leads to denial of service" } ] }
ghsa-xcwr-pcwv-7gm8
Vulnerability from github
Published
2022-05-13 01:08
Modified
2022-05-13 01:08
Severity ?
Details
In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.
{ "affected": [], "aliases": [ "CVE-2018-17189" ], "database_specific": { "cwe_ids": [ "CWE-400" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2019-01-30T22:29:00Z", "severity": "MODERATE" }, "details": "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", "id": "GHSA-xcwr-pcwv-7gm8", "modified": "2022-05-13T01:08:56Z", "published": "2022-05-13T01:08:56Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-17189" }, { "type": "WEB", "url": "https://www.tenable.com/security/tns-2019-09" }, { "type": "WEB", "url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html" }, { "type": "WEB", "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html" }, { "type": "WEB", "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "type": "WEB", "url": "https://www.debian.org/security/2019/dsa-4422" }, { "type": "WEB", "url": "https://usn.ubuntu.com/3937-1" }, { "type": "WEB", "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us" }, { "type": "WEB", "url": "https://security.netapp.com/advisory/ntap-20190125-0001" }, { "type": "WEB", "url": "https://security.gentoo.org/glsa/201903-21" }, { "type": "WEB", "url": "https://seclists.org/bugtraq/2019/Apr/5" }, { "type": "WEB", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6" }, { "type": "WEB", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM" }, { "type": "WEB", "url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E" }, { "type": "WEB", "url": "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9@%3Ccvs.httpd.apache.org%3E" }, { "type": "WEB", "url": "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234@%3Ccvs.httpd.apache.org%3E" }, { "type": "WEB", "url": "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538@%3Ccvs.httpd.apache.org%3E" }, { "type": "WEB", "url": "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f@%3Ccvs.httpd.apache.org%3E" }, { "type": "WEB", "url": "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a@%3Ccvs.httpd.apache.org%3E" }, { "type": "WEB", "url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E" }, { "type": "WEB", "url": "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d@%3Ccvs.httpd.apache.org%3E" }, { "type": "WEB", "url": "https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c@%3Ccvs.httpd.apache.org%3E" }, { "type": "WEB", "url": "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf@%3Ccvs.httpd.apache.org%3E" }, { "type": "WEB", "url": "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830@%3Ccvs.httpd.apache.org%3E" }, { "type": "WEB", "url": "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba@%3Ccvs.httpd.apache.org%3E" }, { "type": "WEB", "url": "https://httpd.apache.org/security/vulnerabilities_24.html" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2019:4126" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2019:3935" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2019:3933" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2019:3932" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/106685" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "type": "CVSS_V3" } ] }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.