Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2019-0217 (GCVE-0-2019-0217)
Vulnerability from cvelistv5 – Published: 2019-04-08 20:11 – Updated: 2024-08-04 17:44
VLAI
EPSS
Summary
In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.
Severity
7.5 (High)
CWE
- Access Control Bypass
Assigner
References
39 references
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Apache | Apache HTTP Server |
Affected:
2.4.0 to 2.4.38
|
Date Public
2019-04-01 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T17:44:15.383Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "[httpd-dev] 20190402 re: svn commit: r33393 - /release/httpd/CHANGES_2.4",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/e0b8f6e858b1c8ec2ce8e291a2c543d438915037c7af661ab6d33808%40%3Cdev.httpd.apache.org%3E"
},
{
"name": "[oss-security] 20190401 CVE-2019-0217: mod_auth_digest access control bypass",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2019/04/02/5"
},
{
"name": "107668",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/107668"
},
{
"name": "20190403 [SECURITY] [DSA 4422-1] apache2 security update",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "https://seclists.org/bugtraq/2019/Apr/5"
},
{
"name": "[debian-lts-announce] 20190403 [SECURITY] [DLA 1748-1] apache2 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00008.html"
},
{
"name": "USN-3937-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3937-1/"
},
{
"name": "DSA-4422",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2019/dsa-4422"
},
{
"name": "FEDORA-2019-119b14075a",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZRMTEIGZKYFNGIDOTXN3GNEJTLVCYU7/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{
"name": "EDORA-2019-cf7695b470",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020"
},
{
"name": "USN-3937-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3937-2/"
},
{
"name": "openSUSE-SU-2019:1190",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00051.html"
},
{
"name": "openSUSE-SU-2019:1209",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00061.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20190423-0001/"
},
{
"name": "openSUSE-SU-2019:1258",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00084.html"
},
{
"name": "FEDORA-2019-a4ed7400f4",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
},
{
"name": "RHSA-2019:2343",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2343"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"name": "RHSA-2019:3436",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3436"
},
{
"name": "RHSA-2019:3933",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3933"
},
{
"name": "RHSA-2019:3935",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3935"
},
{
"name": "RHSA-2019:3932",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3932"
},
{
"name": "RHSA-2019:4126",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4126"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073143 [3/3] - in /websites/staging/httpd/trunk/content: ./ security/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r03ee478b3dda3e381fd6189366fa7af97c980d2f602846eef935277d%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1888194 [12/13] - /httpd/site/trunk/content/security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075470 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Apache HTTP Server",
"vendor": "Apache",
"versions": [
{
"status": "affected",
"version": "2.4.0 to 2.4.38"
}
]
}
],
"datePublic": "2019-04-01T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Access Control Bypass",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-06-06T10:11:49.000Z",
"orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
"shortName": "apache"
},
"references": [
{
"name": "[httpd-dev] 20190402 re: svn commit: r33393 - /release/httpd/CHANGES_2.4",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/e0b8f6e858b1c8ec2ce8e291a2c543d438915037c7af661ab6d33808%40%3Cdev.httpd.apache.org%3E"
},
{
"name": "[oss-security] 20190401 CVE-2019-0217: mod_auth_digest access control bypass",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2019/04/02/5"
},
{
"name": "107668",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/107668"
},
{
"name": "20190403 [SECURITY] [DSA 4422-1] apache2 security update",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "https://seclists.org/bugtraq/2019/Apr/5"
},
{
"name": "[debian-lts-announce] 20190403 [SECURITY] [DLA 1748-1] apache2 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00008.html"
},
{
"name": "USN-3937-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3937-1/"
},
{
"name": "DSA-4422",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2019/dsa-4422"
},
{
"name": "FEDORA-2019-119b14075a",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZRMTEIGZKYFNGIDOTXN3GNEJTLVCYU7/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{
"name": "EDORA-2019-cf7695b470",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020"
},
{
"name": "USN-3937-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3937-2/"
},
{
"name": "openSUSE-SU-2019:1190",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00051.html"
},
{
"name": "openSUSE-SU-2019:1209",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00061.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20190423-0001/"
},
{
"name": "openSUSE-SU-2019:1258",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00084.html"
},
{
"name": "FEDORA-2019-a4ed7400f4",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
},
{
"name": "RHSA-2019:2343",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2343"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"name": "RHSA-2019:3436",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3436"
},
{
"name": "RHSA-2019:3933",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3933"
},
{
"name": "RHSA-2019:3935",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3935"
},
{
"name": "RHSA-2019:3932",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3932"
},
{
"name": "RHSA-2019:4126",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4126"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073143 [3/3] - in /websites/staging/httpd/trunk/content: ./ security/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r03ee478b3dda3e381fd6189366fa7af97c980d2f602846eef935277d%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1888194 [12/13] - /httpd/site/trunk/content/security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075470 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@apache.org",
"ID": "CVE-2019-0217",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Apache HTTP Server",
"version": {
"version_data": [
{
"version_value": "2.4.0 to 2.4.38"
}
]
}
}
]
},
"vendor_name": "Apache"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Access Control Bypass"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[httpd-dev] 20190402 re: svn commit: r33393 - /release/httpd/CHANGES_2.4",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/e0b8f6e858b1c8ec2ce8e291a2c543d438915037c7af661ab6d33808@%3Cdev.httpd.apache.org%3E"
},
{
"name": "[oss-security] 20190401 CVE-2019-0217: mod_auth_digest access control bypass",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2019/04/02/5"
},
{
"name": "107668",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/107668"
},
{
"name": "20190403 [SECURITY] [DSA 4422-1] apache2 security update",
"refsource": "BUGTRAQ",
"url": "https://seclists.org/bugtraq/2019/Apr/5"
},
{
"name": "[debian-lts-announce] 20190403 [SECURITY] [DLA 1748-1] apache2 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00008.html"
},
{
"name": "USN-3937-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3937-1/"
},
{
"name": "DSA-4422",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2019/dsa-4422"
},
{
"name": "FEDORA-2019-119b14075a",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZRMTEIGZKYFNGIDOTXN3GNEJTLVCYU7/"
},
{
"name": "https://httpd.apache.org/security/vulnerabilities_24.html",
"refsource": "MISC",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{
"name": "EDORA-2019-cf7695b470",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT/"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020"
},
{
"name": "USN-3937-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3937-2/"
},
{
"name": "openSUSE-SU-2019:1190",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00051.html"
},
{
"name": "openSUSE-SU-2019:1209",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00061.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20190423-0001/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20190423-0001/"
},
{
"name": "openSUSE-SU-2019:1258",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00084.html"
},
{
"name": "FEDORA-2019-a4ed7400f4",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN/"
},
{
"name": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html",
"refsource": "MISC",
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
},
{
"name": "RHSA-2019:2343",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:2343"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us",
"refsource": "CONFIRM",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us"
},
{
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"name": "RHSA-2019:3436",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3436"
},
{
"name": "RHSA-2019:3933",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3933"
},
{
"name": "RHSA-2019:3935",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3935"
},
{
"name": "RHSA-2019:3932",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3932"
},
{
"name": "RHSA-2019:4126",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4126"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073143 [3/3] - in /websites/staging/httpd/trunk/content: ./ security/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r03ee478b3dda3e381fd6189366fa7af97c980d2f602846eef935277d@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1888194 [12/13] - /httpd/site/trunk/content/security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075470 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d@%3Ccvs.httpd.apache.org%3E"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
"assignerShortName": "apache",
"cveId": "CVE-2019-0217",
"datePublished": "2019-04-08T20:11:20.000Z",
"dateReserved": "2018-11-14T00:00:00.000Z",
"dateUpdated": "2024-08-04T17:44:15.383Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2019-0217",
"date": "2026-06-05",
"epss": "0.43022",
"percentile": "0.97563"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2019-0217\",\"sourceIdentifier\":\"security@apache.org\",\"published\":\"2019-04-08T21:29:00.843\",\"lastModified\":\"2024-11-21T04:16:30.643\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.\"},{\"lang\":\"es\",\"value\":\"En Apache HTTP Server 2.4 versi\u00f3n 2.4.38 y anteriores, una condici\u00f3n de carrera en mod_auth_digest cuando se ejecuta en un servidor multihilo podr\u00eda permitir a un usuario con credenciales v\u00e1lidas autenticarse usando otro nombre de usuario, evitando las restricciones de control de acceso configuradas.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.6,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:S/C:P/I:P/A:P\",\"baseScore\":6.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":6.8,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-362\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.4.0\",\"versionEndIncluding\":\"2.4.38\",\"matchCriteriaId\":\"5516E3D4-8AE7-47B8-BC55-9C76A23DF2EA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC1BD7B7-6D88-42B8-878E-F1318CA5FCAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D100F7CE-FC64-4CC6-852A-6136D72DA419\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97A4B8DF-58DA-4AB6-A1F9-331B36409BA3\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"8D305F7A-D159-4716-AB26-5E38BB5CD991\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"B5A6F2F3-4894-4392-8296-3B8DD2679084\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07C312A0-CD2C-4B9C-B064-6409B25C278F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3F7347E2-C2A4-4230-A1BC-F6FE93943D4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33C068A4-3780-4EAB-A937-6082DF847564\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51EF4996-72F4-4FA4-814F-F5991E7A8318\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"825ECE2D-E232-46E0-A047-074B34DB1E97\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1E78106-58E6-4D59-990F-75DA575BFAD9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F65DAB0-3DAD-49FF-BC73-3581CC3D5BF3\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:oncommand_unified_manager:-:*:*:*:*:7-mode:*:*\",\"matchCriteriaId\":\"3FA5E22C-489B-4C5F-A5F3-C03F45CA8811\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1FED6CAE-D97F-49E0-9D00-1642A3A427B4\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB654DFA-FEF9-4D00-ADB0-F3F2B6ACF13E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"37209C6F-EF99-4D21-9608-B3A06D283D24\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DFC79B17-E9D2-44D5-93ED-2F959E7A3D43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_point_of_service:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F87FC90-16D0-4051-8280-B0DD4441F10B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_point_of_service:7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0ED83E3-E6BF-4EAA-AF8F-33485A88A218\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00051.html\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00061.html\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00084.html\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/04/02/5\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/107668\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2343\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3436\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3932\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3933\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3935\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4126\",\"source\":\"security@apache.org\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1695020\",\"source\":\"security@apache.org\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://httpd.apache.org/security/vulnerabilities_24.html\",\"source\":\"security@apache.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/e0b8f6e858b1c8ec2ce8e291a2c543d438915037c7af661ab6d33808%40%3Cdev.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r03ee478b3dda3e381fd6189366fa7af97c980d2f602846eef935277d%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2019/04/msg00008.html\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN/\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZRMTEIGZKYFNGIDOTXN3GNEJTLVCYU7/\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT/\",\"source\":\"security@apache.org\"},{\"url\":\"https://seclists.org/bugtraq/2019/Apr/5\",\"source\":\"security@apache.org\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20190423-0001/\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3937-1/\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3937-2/\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2019/dsa-4422\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2020.html\",\"source\":\"security@apache.org\"},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html\",\"source\":\"security@apache.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html\",\"source\":\"security@apache.org\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00051.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00061.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00084.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/04/02/5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/107668\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2343\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3436\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3932\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3933\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3935\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4126\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1695020\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://httpd.apache.org/security/vulnerabilities_24.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/e0b8f6e858b1c8ec2ce8e291a2c543d438915037c7af661ab6d33808%40%3Cdev.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r03ee478b3dda3e381fd6189366fa7af97c980d2f602846eef935277d%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2019/04/msg00008.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZRMTEIGZKYFNGIDOTXN3GNEJTLVCYU7/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://seclists.org/bugtraq/2019/Apr/5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20190423-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3937-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3937-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2019/dsa-4422\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]}]}}"
}
}
Title
Уязвимость компонента mod_auth_digest веб-сервера Apache HTTP Server, позволяющая нарушителю проходить аутентификацию, используя другое имя пользователя
Description
Уязвимость компонента mod_auth_digest веб-сервера Apache HTTP Server вызвана ошибками синхронизации при использовании общего ресурса. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, проходить аутентификацию, используя другое имя пользователя
Severity
Vendor
Red Hat Inc., Canonical Ltd., ООО «РусБИТех-Астра», Сообщество свободного программного обеспечения, Novell Inc., Fedora Project, Oracle Corp., Apache Software Foundation, АО «НТЦ ИТ РОСА»
Software Name
Red Hat Enterprise Linux, Ubuntu, Astra Linux Special Edition (запись в едином реестре российских программ №369), Debian GNU/Linux, OpenSUSE Leap, Fedora, Instantis EnterpriseTrack, Astra Linux Common Edition (запись в едином реестре российских программ №4433), HTTP Server, ROSA Virtualization (запись в едином реестре российских программ №5091), ROSA Virtualization 3.0 (запись в едином реестре российских программ №21308)
Software Version
Desktop 7 (Red Hat Enterprise Linux), Workstation 7 (Red Hat Enterprise Linux), 14.04 LTS (Ubuntu), 16.04 LTS (Ubuntu), 1.5 «Смоленск» (Astra Linux Special Edition), 9 (Debian GNU/Linux), 42.3 (OpenSUSE Leap), 18.04 LTS (Ubuntu), 28 (Fedora), 18.10 (Ubuntu), 1.6 «Смоленск» (Astra Linux Special Edition), 29 (Fedora), Server 7.0 (Red Hat Enterprise Linux), 17.1 (Instantis EnterpriseTrack), 17.2 (Instantis EnterpriseTrack), 17.3 (Instantis EnterpriseTrack), 2.12 «Орёл» (Astra Linux Common Edition), 15.0 (OpenSUSE Leap), 30 (Fedora), 8 (Debian GNU/Linux), 10 (Debian GNU/Linux), от 2.4.0 до 2.4.39 (HTTP Server), 2.1 (ROSA Virtualization), 3.0 (ROSA Virtualization 3.0)
Possible Mitigations
Использование рекомендаций:
Для веб-сервера Apache HTTP:
https://httpd.apache.org/security/vulnerabilities_24.html
Для программных средств Oracle:
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html
Для Debian GNU/Linux:
https://www.debian.org/security/2019/dsa-4422
Для Ubuntu:
https://usn.ubuntu.com/3937-1/
https://usn.ubuntu.com/3937-2/
Для программных продуктов Novell Inc.:
http://www.openwall.com/lists/oss-security/2019/04/02/5
Для Fedora:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZRMTEIGZKYFNGIDOTXN3GNEJTLVCYU7/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT/
Для Debian:
https://security-tracker.debian.org/tracker/CVE-2019-0217
Для Astra Linux:
https://wiki.astralinux.ru/astra-linux-se16-bulletin-20210730SE16
Для программной системы управления средой виртуализации с подсистемой безагентного резервного копирования виртуальных машин «ROSA Virtualization 3.0»: https://abf.rosa.ru/advisories/ROSA-SA-2025-2900
Для программной системы управления средой виртуализации с подсистемой безагентного резервного копирования виртуальных машин «ROSA Virtualization 3.0»: https://abf.rosa.ru/advisories/ROSA-SA-2025-2860
Для системы управления средой виртуализации «ROSA Virtualization»: https://abf.rosa.ru/advisories/ROSA-SA-2025-2899
Для системы управления средой виртуализации «ROSA Virtualization»: https://abf.rosa.ru/advisories/ROSA-SA-2025-2859
Reference
http://www.openwall.com/lists/oss-security/2019/04/02/5
httpd.apache.org%3E
httpd.apache.org/security/vulnerabilities_24.html
https://
https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba@%3Ccvs.
https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830@%3Ccvs.
https://lists.apache.org/thread.html/e0b8f6e858b1c8ec2ce8e291a2c543d438915037c7af661ab6d33808@%3Cdev.
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZRMTEIGZKYFNGIDOTXN3GNEJTLVCYU7/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT/
https://nvd.nist.gov/vuln/detail/CVE-2019-0217
https://security-tracker.debian.org/tracker/CVE-2019-0217
https://usn.ubuntu.com/3937-1/
https://usn.ubuntu.com/3937-2/
https://wiki.astralinux.ru/astra-linux-se15-bulletin-20201201SE15
https://wiki.astralinux.ru/astra-linux-se16-bulletin-20210611SE16
https://www.debian.org/security/2019/dsa-4422
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html
https://www.oracle.com/technetwork/topics/security/public-vuln-to-advisory-mapping-093627.html
https://abf.rosa.ru/advisories/ROSA-SA-2025-2900
https://abf.rosa.ru/advisories/ROSA-SA-2025-2860
https://abf.rosa.ru/advisories/ROSA-SA-2025-2899
https://abf.rosa.ru/advisories/ROSA-SA-2025-2859
CWE
CWE-362
{
"CVSS 2.0": "AV:N/AC:M/Au:S/C:P/I:P/A:P",
"CVSS 3.0": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Red Hat Inc., Canonical Ltd., \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb, \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, Novell Inc., Fedora Project, Oracle Corp., Apache Software Foundation, \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "Desktop 7 (Red Hat Enterprise Linux), Workstation 7 (Red Hat Enterprise Linux), 14.04 LTS (Ubuntu), 16.04 LTS (Ubuntu), 1.5 \u00ab\u0421\u043c\u043e\u043b\u0435\u043d\u0441\u043a\u00bb (Astra Linux Special Edition), 9 (Debian GNU/Linux), 42.3 (OpenSUSE Leap), 18.04 LTS (Ubuntu), 28 (Fedora), 18.10 (Ubuntu), 1.6 \u00ab\u0421\u043c\u043e\u043b\u0435\u043d\u0441\u043a\u00bb (Astra Linux Special Edition), 29 (Fedora), Server 7.0 (Red Hat Enterprise Linux), 17.1 (Instantis EnterpriseTrack), 17.2 (Instantis EnterpriseTrack), 17.3 (Instantis EnterpriseTrack), 2.12 \u00ab\u041e\u0440\u0451\u043b\u00bb (Astra Linux Common Edition), 15.0 (OpenSUSE Leap), 30 (Fedora), 8 (Debian GNU/Linux), 10 (Debian GNU/Linux), \u043e\u0442 2.4.0 \u0434\u043e 2.4.39 (HTTP Server), 2.1 (ROSA Virtualization), 3.0 (ROSA Virtualization 3.0)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f \u0432\u0435\u0431-\u0441\u0435\u0440\u0432\u0435\u0440\u0430 Apache HTTP:\nhttps://httpd.apache.org/security/vulnerabilities_24.html\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 Oracle:\nhttps://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html \nhttps://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html\n\n\u0414\u043b\u044f Debian GNU/Linux:\nhttps://www.debian.org/security/2019/dsa-4422\n\n\u0414\u043b\u044f Ubuntu:\nhttps://usn.ubuntu.com/3937-1/\nhttps://usn.ubuntu.com/3937-2/\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Novell Inc.:\nhttp://www.openwall.com/lists/oss-security/2019/04/02/5\n\n\u0414\u043b\u044f Fedora:\nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN/ \nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZRMTEIGZKYFNGIDOTXN3GNEJTLVCYU7/ \nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT/\n\n\u0414\u043b\u044f Debian:\nhttps://security-tracker.debian.org/tracker/CVE-2019-0217\n\n\u0414\u043b\u044f Astra Linux:\nhttps://wiki.astralinux.ru/astra-linux-se16-bulletin-20210730SE16\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u0440\u0435\u0434\u043e\u0439 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u0441 \u043f\u043e\u0434\u0441\u0438\u0441\u0442\u0435\u043c\u043e\u0439 \u0431\u0435\u0437\u0430\u0433\u0435\u043d\u0442\u043d\u043e\u0433\u043e \u0440\u0435\u0437\u0435\u0440\u0432\u043d\u043e\u0433\u043e \u043a\u043e\u043f\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0445 \u043c\u0430\u0448\u0438\u043d \u00abROSA Virtualization 3.0\u00bb: https://abf.rosa.ru/advisories/ROSA-SA-2025-2900\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u0440\u0435\u0434\u043e\u0439 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u0441 \u043f\u043e\u0434\u0441\u0438\u0441\u0442\u0435\u043c\u043e\u0439 \u0431\u0435\u0437\u0430\u0433\u0435\u043d\u0442\u043d\u043e\u0433\u043e \u0440\u0435\u0437\u0435\u0440\u0432\u043d\u043e\u0433\u043e \u043a\u043e\u043f\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0445 \u043c\u0430\u0448\u0438\u043d \u00abROSA Virtualization 3.0\u00bb: https://abf.rosa.ru/advisories/ROSA-SA-2025-2860\n\n\u0414\u043b\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u0440\u0435\u0434\u043e\u0439 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u00abROSA Virtualization\u00bb: https://abf.rosa.ru/advisories/ROSA-SA-2025-2899\n\n\u0414\u043b\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u0440\u0435\u0434\u043e\u0439 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u00abROSA Virtualization\u00bb: https://abf.rosa.ru/advisories/ROSA-SA-2025-2859",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "08.04.2019",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "19.08.2025",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "03.12.2019",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2019-04408",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2019-0217",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Red Hat Enterprise Linux, Ubuntu, Astra Linux Special Edition (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), Debian GNU/Linux, OpenSUSE Leap, Fedora, Instantis EnterpriseTrack, Astra Linux Common Edition (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21164433), HTTP Server, ROSA Virtualization (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165091), ROSA Virtualization 3.0 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u211621308)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Red Hat Inc. Red Hat Enterprise Linux Desktop 7 , Red Hat Inc. Red Hat Enterprise Linux Workstation 7 , Canonical Ltd. Ubuntu 14.04 LTS , \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 1.5 \u00ab\u0421\u043c\u043e\u043b\u0435\u043d\u0441\u043a\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), Canonical Ltd. Ubuntu 16.04 LTS , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 9 , Novell Inc. OpenSUSE Leap 42.3 , Canonical Ltd. Ubuntu 18.04 LTS , Fedora Project Fedora 28 , Canonical Ltd. Ubuntu 18.10 , Fedora Project Fedora 29 , Red Hat Inc. Red Hat Enterprise Linux Server 7.0 , \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Common Edition 2.12 \u00ab\u041e\u0440\u0451\u043b\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21164433), Novell Inc. OpenSUSE Leap 15.0 , Fedora Project Fedora 30 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 8 , \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb ROSA Virtualization 2.1 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165091), \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb ROSA Virtualization 3.0 3.0 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u211621308)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 mod_auth_digest \u0432\u0435\u0431-\u0441\u0435\u0440\u0432\u0435\u0440\u0430 Apache HTTP Server, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u0440\u043e\u0445\u043e\u0434\u0438\u0442\u044c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044e, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0434\u0440\u0443\u0433\u043e\u0435 \u0438\u043c\u044f \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041e\u0434\u043d\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0435 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u043e\u0431\u0449\u0435\u0433\u043e \u0440\u0435\u0441\u0443\u0440\u0441\u0430 \u0441 \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e\u0439 \u0441\u0438\u043d\u0445\u0440\u043e\u043d\u0438\u0437\u0430\u0446\u0438\u0435\u0439 (\u00ab\u0421\u0438\u0442\u0443\u0430\u0446\u0438\u044f \u0433\u043e\u043d\u043a\u0438\u00bb) (CWE-362)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 mod_auth_digest \u0432\u0435\u0431-\u0441\u0435\u0440\u0432\u0435\u0440\u0430 Apache HTTP Server \u0432\u044b\u0437\u0432\u0430\u043d\u0430 \u043e\u0448\u0438\u0431\u043a\u0430\u043c\u0438 \u0441\u0438\u043d\u0445\u0440\u043e\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u043f\u0440\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0438 \u043e\u0431\u0449\u0435\u0433\u043e \u0440\u0435\u0441\u0443\u0440\u0441\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u043f\u0440\u043e\u0445\u043e\u0434\u0438\u0442\u044c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044e, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0434\u0440\u0443\u0433\u043e\u0435 \u0438\u043c\u044f \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041d\u0430\u0440\u0443\u0448\u0435\u043d\u0438\u0435 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "http://www.openwall.com/lists/oss-security/2019/04/02/5\nhttpd.apache.org%3E\nhttpd.apache.org/security/vulnerabilities_24.html\nhttps://\nhttps://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba@%3Ccvs.\nhttps://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830@%3Ccvs.\nhttps://lists.apache.org/thread.html/e0b8f6e858b1c8ec2ce8e291a2c543d438915037c7af661ab6d33808@%3Cdev.\nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN/\nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZRMTEIGZKYFNGIDOTXN3GNEJTLVCYU7/\nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT/\nhttps://nvd.nist.gov/vuln/detail/CVE-2019-0217\nhttps://security-tracker.debian.org/tracker/CVE-2019-0217\nhttps://usn.ubuntu.com/3937-1/\nhttps://usn.ubuntu.com/3937-2/\nhttps://wiki.astralinux.ru/astra-linux-se15-bulletin-20201201SE15\nhttps://wiki.astralinux.ru/astra-linux-se16-bulletin-20210611SE16\nhttps://www.debian.org/security/2019/dsa-4422\nhttps://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html\nhttps://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html\nhttps://www.oracle.com/technetwork/topics/security/public-vuln-to-advisory-mapping-093627.html\nhttps://abf.rosa.ru/advisories/ROSA-SA-2025-2900\nhttps://abf.rosa.ru/advisories/ROSA-SA-2025-2860\nhttps://abf.rosa.ru/advisories/ROSA-SA-2025-2899\nhttps://abf.rosa.ru/advisories/ROSA-SA-2025-2859",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-362",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,6)"
}
CERTFR-2019-AVI-141
Vulnerability from certfr_avis - Published: 2019-04-02 - Updated: 2019-04-02
De multiples vulnérabilités ont été découvertes dans Apache Httpd. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneReferences
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Apache Httpd versions ant\u00e9rieures \u00e0 2.4.39",
"product": {
"name": "N/A",
"vendor": {
"name": "Apache",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2019-0197",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0197"
},
{
"name": "CVE-2019-0215",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0215"
},
{
"name": "CVE-2019-0196",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0196"
},
{
"name": "CVE-2019-0220",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0220"
},
{
"name": "CVE-2019-0217",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0217"
},
{
"name": "CVE-2019-0211",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0211"
}
],
"initial_release_date": "2019-04-02T00:00:00",
"last_revision_date": "2019-04-02T00:00:00",
"links": [],
"reference": "CERTFR-2019-AVI-141",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-04-02T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Apache Httpd.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer un\nprobl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, un d\u00e9ni de service \u00e0\ndistance et un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Apache Httpd",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apache CHANGES_2.4 du 01 avril 2019",
"url": "http://www.apache.org/dist/httpd/CHANGES_2.4"
}
]
}
CERTFR-2021-AVI-226
Vulnerability from certfr_avis - Published: 2021-03-31 - Updated: 2021-03-31
De multiples vulnérabilités ont été découvertes dans Zimbra. Elles permettent à un attaquant de provoquer une exécution de code arbitraire, un contournement de la politique de sécurité et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Zimbra versions 9.x ant\u00e9rieures \u00e0 9.0.0 P13",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Zimbra versions 8.x ant\u00e9rieures \u00e0 8.8.15 P20",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2019-9641",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9641"
},
{
"name": "CVE-2019-9640",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9640"
},
{
"name": "CVE-2019-0217",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0217"
},
{
"name": "CVE-2019-0211",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0211"
}
],
"initial_release_date": "2021-03-31T00:00:00",
"last_revision_date": "2021-03-31T00:00:00",
"links": [],
"reference": "CERTFR-2021-AVI-226",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-03-31T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Zimbra. Elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire,\nun contournement de la politique de s\u00e9curit\u00e9 et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Zimbra",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Zimbra du 30 mars 2021",
"url": "https://blog.zimbra.com/2021/03/new-zimbra-patches-9-0-0-patch-13-and-8-8-15-patch-20/"
}
]
}
Title
Apache HTTP Server身份验证绕过漏洞
Description
Apache HTTP Server是美国阿帕奇(Apache)软件基金会的一款开源网页服务器。
Apache HTTP Server存在身份验证绕过漏洞。攻击者可利用漏洞绕过身份验证机制并执行未经授权的操作。
Severity
高
Patch Name
Apache HTTP Server身份验证绕过漏洞的补丁
Patch Description
Apache HTTP Server是美国阿帕奇(Apache)软件基金会的一款开源网页服务器。
Apache HTTP Server存在身份验证绕过漏洞。攻击者可利用漏洞绕过身份验证机制并执行未经授权的操作。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
用户可参考如下供应商提供的安全公告获得补丁信息: https://httpd.apache.org/security/vulnerabilities_24.html
Reference
https://www.securityfocus.com/bid/107668
https://httpd.apache.org/security/vulnerabilities_24.html
Impacted products
| Name | Apache HTTP Server >=2.4.0,<=2.4.38 |
|---|
{
"bids": {
"bid": {
"bidNumber": "107668"
}
},
"cves": {
"cve": {
"cveNumber": "CVE-2019-0217"
}
},
"description": "Apache HTTP Server\u662f\u7f8e\u56fd\u963f\u5e15\u5947\uff08Apache\uff09\u8f6f\u4ef6\u57fa\u91d1\u4f1a\u7684\u4e00\u6b3e\u5f00\u6e90\u7f51\u9875\u670d\u52a1\u5668\u3002\n\nApache HTTP Server\u5b58\u5728\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u7ed5\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u673a\u5236\u5e76\u6267\u884c\u672a\u7ecf\u6388\u6743\u7684\u64cd\u4f5c\u3002",
"discovererName": "Simon Kappel",
"formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u4f9b\u5e94\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://httpd.apache.org/security/vulnerabilities_24.html",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2019-08945",
"openTime": "2019-04-03",
"patchDescription": "Apache HTTP Server\u662f\u7f8e\u56fd\u963f\u5e15\u5947\uff08Apache\uff09\u8f6f\u4ef6\u57fa\u91d1\u4f1a\u7684\u4e00\u6b3e\u5f00\u6e90\u7f51\u9875\u670d\u52a1\u5668\u3002\r\n\r\nApache HTTP Server\u5b58\u5728\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u7ed5\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u673a\u5236\u5e76\u6267\u884c\u672a\u7ecf\u6388\u6743\u7684\u64cd\u4f5c\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Apache HTTP Server\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": "Apache HTTP Server \u003e=2.4.0\uff0c\u003c=2.4.38"
},
"referenceLink": "https://www.securityfocus.com/bid/107668\r\nhttps://httpd.apache.org/security/vulnerabilities_24.html",
"serverity": "\u9ad8",
"submitTime": "2019-04-03",
"title": "Apache HTTP Server\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e"
}
FKIE_CVE-2019-0217
Vulnerability from fkie_nvd - Published: 2019-04-08 21:29 - Updated: 2024-11-21 04:16
Severity
Summary
In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| apache | http_server | * | |
| debian | debian_linux | 8.0 | |
| debian | debian_linux | 9.0 | |
| fedoraproject | fedora | 28 | |
| fedoraproject | fedora | 29 | |
| fedoraproject | fedora | 30 | |
| canonical | ubuntu_linux | 12.04 | |
| canonical | ubuntu_linux | 14.04 | |
| canonical | ubuntu_linux | 16.04 | |
| canonical | ubuntu_linux | 18.04 | |
| canonical | ubuntu_linux | 18.10 | |
| redhat | enterprise_linux | - | |
| redhat | enterprise_linux_desktop | 7.0 | |
| redhat | enterprise_linux_server | 7.0 | |
| redhat | enterprise_linux_workstation | 7.0 | |
| opensuse | leap | 15.0 | |
| opensuse | leap | 42.3 | |
| netapp | oncommand_unified_manager | - | |
| netapp | clustered_data_ontap | - | |
| oracle | enterprise_manager_ops_center | 12.3.3 | |
| oracle | enterprise_manager_ops_center | 12.4.0 | |
| oracle | http_server | 12.2.1.3.0 | |
| oracle | retail_xstore_point_of_service | 7.0 | |
| oracle | retail_xstore_point_of_service | 7.1 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5516E3D4-8AE7-47B8-BC55-9C76A23DF2EA",
"versionEndIncluding": "2.4.38",
"versionStartIncluding": "2.4.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*",
"matchCriteriaId": "DC1BD7B7-6D88-42B8-878E-F1318CA5FCAF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*",
"matchCriteriaId": "D100F7CE-FC64-4CC6-852A-6136D72DA419",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
"matchCriteriaId": "97A4B8DF-58DA-4AB6-A1F9-331B36409BA3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*",
"matchCriteriaId": "8D305F7A-D159-4716-AB26-5E38BB5CD991",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "B5A6F2F3-4894-4392-8296-3B8DD2679084",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*",
"matchCriteriaId": "07C312A0-CD2C-4B9C-B064-6409B25C278F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3F7347E2-C2A4-4230-A1BC-F6FE93943D4F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "33C068A4-3780-4EAB-A937-6082DF847564",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F1E78106-58E6-4D59-990F-75DA575BFAD9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*",
"matchCriteriaId": "5F65DAB0-3DAD-49FF-BC73-3581CC3D5BF3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:netapp:oncommand_unified_manager:-:*:*:*:*:7-mode:*:*",
"matchCriteriaId": "3FA5E22C-489B-4C5F-A5F3-C03F45CA8811",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1FED6CAE-D97F-49E0-9D00-1642A3A427B4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.3:*:*:*:*:*:*:*",
"matchCriteriaId": "AB654DFA-FEF9-4D00-ADB0-F3F2B6ACF13E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "37209C6F-EF99-4D21-9608-B3A06D283D24",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DFC79B17-E9D2-44D5-93ED-2F959E7A3D43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:retail_xstore_point_of_service:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "2F87FC90-16D0-4051-8280-B0DD4441F10B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:retail_xstore_point_of_service:7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "A0ED83E3-E6BF-4EAA-AF8F-33485A88A218",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions."
},
{
"lang": "es",
"value": "En Apache HTTP Server 2.4 versi\u00f3n 2.4.38 y anteriores, una condici\u00f3n de carrera en mod_auth_digest cuando se ejecuta en un servidor multihilo podr\u00eda permitir a un usuario con credenciales v\u00e1lidas autenticarse usando otro nombre de usuario, evitando las restricciones de control de acceso configuradas."
}
],
"id": "CVE-2019-0217",
"lastModified": "2024-11-21T04:16:30.643",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 6.8,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.6,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2019-04-08T21:29:00.843",
"references": [
{
"source": "security@apache.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00051.html"
},
{
"source": "security@apache.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00061.html"
},
{
"source": "security@apache.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00084.html"
},
{
"source": "security@apache.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2019/04/02/5"
},
{
"source": "security@apache.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/107668"
},
{
"source": "security@apache.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2343"
},
{
"source": "security@apache.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3436"
},
{
"source": "security@apache.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3932"
},
{
"source": "security@apache.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3933"
},
{
"source": "security@apache.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3935"
},
{
"source": "security@apache.org",
"url": "https://access.redhat.com/errata/RHSA-2019:4126"
},
{
"source": "security@apache.org",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020"
},
{
"source": "security@apache.org",
"tags": [
"Vendor Advisory"
],
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/e0b8f6e858b1c8ec2ce8e291a2c543d438915037c7af661ab6d33808%40%3Cdev.httpd.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/r03ee478b3dda3e381fd6189366fa7af97c980d2f602846eef935277d%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "security@apache.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00008.html"
},
{
"source": "security@apache.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN/"
},
{
"source": "security@apache.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZRMTEIGZKYFNGIDOTXN3GNEJTLVCYU7/"
},
{
"source": "security@apache.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT/"
},
{
"source": "security@apache.org",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "https://seclists.org/bugtraq/2019/Apr/5"
},
{
"source": "security@apache.org",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20190423-0001/"
},
{
"source": "security@apache.org",
"tags": [
"Third Party Advisory"
],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us"
},
{
"source": "security@apache.org",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3937-1/"
},
{
"source": "security@apache.org",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3937-2/"
},
{
"source": "security@apache.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2019/dsa-4422"
},
{
"source": "security@apache.org",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"source": "security@apache.org",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
},
{
"source": "security@apache.org",
"tags": [
"Broken Link"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00051.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00061.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00084.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2019/04/02/5"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/107668"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2343"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3436"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3932"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3933"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3935"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://access.redhat.com/errata/RHSA-2019:4126"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/e0b8f6e858b1c8ec2ce8e291a2c543d438915037c7af661ab6d33808%40%3Cdev.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r03ee478b3dda3e381fd6189366fa7af97c980d2f602846eef935277d%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00008.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZRMTEIGZKYFNGIDOTXN3GNEJTLVCYU7/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "https://seclists.org/bugtraq/2019/Apr/5"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20190423-0001/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3937-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3937-2/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2019/dsa-4422"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"sourceIdentifier": "security@apache.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-362"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-Q29R-XR2F-G7J5
Vulnerability from github – Published: 2022-05-13 01:09 – Updated: 2022-05-13 01:09
VLAI
Details
In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.
Severity
7.5 (High)
{
"affected": [],
"aliases": [
"CVE-2019-0217"
],
"database_specific": {
"cwe_ids": [
"CWE-362"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2019-04-08T21:29:00Z",
"severity": "HIGH"
},
"details": "In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.",
"id": "GHSA-q29r-xr2f-g7j5",
"modified": "2022-05-13T01:09:38Z",
"published": "2022-05-13T01:09:38Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0217"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2019:2343"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00008.html"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZRMTEIGZKYFNGIDOTXN3GNEJTLVCYU7"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT"
},
{
"type": "WEB",
"url": "https://seclists.org/bugtraq/2019/Apr/5"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20190423-0001"
},
{
"type": "WEB",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3937-1"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3937-2"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2019/dsa-4422"
},
{
"type": "WEB",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"type": "WEB",
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
},
{
"type": "WEB",
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2019:3436"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2019:3932"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2019:3933"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2019:3935"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2019:4126"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020"
},
{
"type": "WEB",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/e0b8f6e858b1c8ec2ce8e291a2c543d438915037c7af661ab6d33808@%3Cdev.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r03ee478b3dda3e381fd6189366fa7af97c980d2f602846eef935277d@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00051.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00061.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00084.html"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2019/04/02/5"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/107668"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2019-0217
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2019-0217",
"description": "In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.",
"id": "GSD-2019-0217",
"references": [
"https://www.suse.com/security/cve/CVE-2019-0217.html",
"https://www.debian.org/security/2019/dsa-4422",
"https://access.redhat.com/errata/RHSA-2019:4126",
"https://access.redhat.com/errata/RHSA-2019:3935",
"https://access.redhat.com/errata/RHSA-2019:3933",
"https://access.redhat.com/errata/RHSA-2019:3932",
"https://access.redhat.com/errata/RHSA-2019:3436",
"https://access.redhat.com/errata/RHSA-2019:2343",
"https://ubuntu.com/security/CVE-2019-0217",
"https://security.archlinux.org/CVE-2019-0217",
"https://alas.aws.amazon.com/cve/html/CVE-2019-0217.html",
"https://linux.oracle.com/cve/CVE-2019-0217.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2019-0217"
],
"details": "In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.",
"id": "GSD-2019-0217",
"modified": "2023-12-13T01:23:39.636443Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security@apache.org",
"ID": "CVE-2019-0217",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Apache HTTP Server",
"version": {
"version_data": [
{
"version_value": "2.4.0 to 2.4.38"
}
]
}
}
]
},
"vendor_name": "Apache"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Access Control Bypass"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[httpd-dev] 20190402 re: svn commit: r33393 - /release/httpd/CHANGES_2.4",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/e0b8f6e858b1c8ec2ce8e291a2c543d438915037c7af661ab6d33808@%3Cdev.httpd.apache.org%3E"
},
{
"name": "[oss-security] 20190401 CVE-2019-0217: mod_auth_digest access control bypass",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2019/04/02/5"
},
{
"name": "107668",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/107668"
},
{
"name": "20190403 [SECURITY] [DSA 4422-1] apache2 security update",
"refsource": "BUGTRAQ",
"url": "https://seclists.org/bugtraq/2019/Apr/5"
},
{
"name": "[debian-lts-announce] 20190403 [SECURITY] [DLA 1748-1] apache2 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00008.html"
},
{
"name": "USN-3937-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3937-1/"
},
{
"name": "DSA-4422",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2019/dsa-4422"
},
{
"name": "FEDORA-2019-119b14075a",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZRMTEIGZKYFNGIDOTXN3GNEJTLVCYU7/"
},
{
"name": "https://httpd.apache.org/security/vulnerabilities_24.html",
"refsource": "MISC",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{
"name": "EDORA-2019-cf7695b470",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT/"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020"
},
{
"name": "USN-3937-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3937-2/"
},
{
"name": "openSUSE-SU-2019:1190",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00051.html"
},
{
"name": "openSUSE-SU-2019:1209",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00061.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20190423-0001/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20190423-0001/"
},
{
"name": "openSUSE-SU-2019:1258",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00084.html"
},
{
"name": "FEDORA-2019-a4ed7400f4",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN/"
},
{
"name": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html",
"refsource": "MISC",
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
},
{
"name": "RHSA-2019:2343",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:2343"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us",
"refsource": "CONFIRM",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us"
},
{
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"name": "RHSA-2019:3436",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3436"
},
{
"name": "RHSA-2019:3933",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3933"
},
{
"name": "RHSA-2019:3935",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3935"
},
{
"name": "RHSA-2019:3932",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3932"
},
{
"name": "RHSA-2019:4126",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4126"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073143 [3/3] - in /websites/staging/httpd/trunk/content: ./ security/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r03ee478b3dda3e381fd6189366fa7af97c980d2f602846eef935277d@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1888194 [12/13] - /httpd/site/trunk/content/security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075470 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d@%3Ccvs.httpd.apache.org%3E"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.4.38",
"versionStartIncluding": "2.4.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:netapp:oncommand_unified_manager:-:*:*:*:*:7-mode:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:retail_xstore_point_of_service:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:retail_xstore_point_of_service:7.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security@apache.org",
"ID": "CVE-2019-0217"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-362"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "DSA-4422",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2019/dsa-4422"
},
{
"name": "USN-3937-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3937-1/"
},
{
"name": "20190403 [SECURITY] [DSA 4422-1] apache2 security update",
"refsource": "BUGTRAQ",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "https://seclists.org/bugtraq/2019/Apr/5"
},
{
"name": "EDORA-2019-cf7695b470",
"refsource": "FEDORA",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT/"
},
{
"name": "FEDORA-2019-119b14075a",
"refsource": "FEDORA",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZRMTEIGZKYFNGIDOTXN3GNEJTLVCYU7/"
},
{
"name": "[debian-lts-announce] 20190403 [SECURITY] [DLA 1748-1] apache2 security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00008.html"
},
{
"name": "[httpd-dev] 20190402 re: svn commit: r33393 - /release/httpd/CHANGES_2.4",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/e0b8f6e858b1c8ec2ce8e291a2c543d438915037c7af661ab6d33808@%3Cdev.httpd.apache.org%3E"
},
{
"name": "https://httpd.apache.org/security/vulnerabilities_24.html",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020",
"refsource": "MISC",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020"
},
{
"name": "107668",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/107668"
},
{
"name": "[oss-security] 20190401 CVE-2019-0217: mod_auth_digest access control bypass",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2019/04/02/5"
},
{
"name": "USN-3937-2",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3937-2/"
},
{
"name": "openSUSE-SU-2019:1190",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00051.html"
},
{
"name": "openSUSE-SU-2019:1209",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00061.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20190423-0001/",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20190423-0001/"
},
{
"name": "openSUSE-SU-2019:1258",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00084.html"
},
{
"name": "FEDORA-2019-a4ed7400f4",
"refsource": "FEDORA",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN/"
},
{
"name": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html",
"refsource": "MISC",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
},
{
"name": "RHSA-2019:2343",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2343"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbux03950en_us"
},
{
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"tags": [
"Broken Link"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"name": "RHSA-2019:3436",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3436"
},
{
"name": "RHSA-2019:3935",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3935"
},
{
"name": "RHSA-2019:3933",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3933"
},
{
"name": "RHSA-2019:3932",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3932"
},
{
"name": "RHSA-2019:4126",
"refsource": "REDHAT",
"tags": [],
"url": "https://access.redhat.com/errata/RHSA-2019:4126"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "N/A",
"refsource": "N/A",
"tags": [],
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1888194 [12/13] - /httpd/site/trunk/content/security/json/",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073143 [3/3] - in /websites/staging/httpd/trunk/content: ./ security/",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.apache.org/thread.html/r03ee478b3dda3e381fd6189366fa7af97c980d2f602846eef935277d@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075470 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d@%3Ccvs.httpd.apache.org%3E"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 6.8,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.6,
"impactScore": 5.9
}
},
"lastModifiedDate": "2021-06-06T11:15Z",
"publishedDate": "2019-04-08T21:29Z"
}
}
}
OPENSUSE-SU-2019:1209-1
Vulnerability from csaf_opensuse - Published: 2019-04-16 08:27 - Updated: 2019-04-16 08:27Summary
Security update for apache2
Severity
Important
Notes
Title of the patch: Security update for apache2
Description of the patch: This update for apache2 fixes the following issues:
* CVE-2019-0211: A flaw in the Apache HTTP Server allowed less-privileged child
processes or threads to execute arbitrary code with the privileges of the
parent process. Attackers with control over CGI scripts or extension modules
run by the server could have abused this issue to potentially gain super user
privileges. [bsc#1131233]
* CVE-2019-0220: The Apache HTTP server did not use a consistent strategy for
URL normalization throughout all of its components. In particular,
consecutive slashes were not always collapsed. Attackers could potentially
abuse these inconsistencies to by-pass access control mechanisms and thus
gain unauthorized access to protected parts of the service. [bsc#1131241]
* CVE-2019-0217: A race condition in Apache's 'mod_auth_digest' when running in
a threaded server could have allowed users with valid credentials to
authenticate using another username, bypassing configured access control
restrictions. [bsc#1131239]
* CVE-2019-0197: When HTTP/2 support was enabled in the Apache server for a
'http' host or H2Upgrade was enabled for h2 on a 'https' host, an Upgrade
request from http/1.1 to http/2 that was not the first request on a
connection could lead to a misconfiguration and crash. This issue could have
been abused to mount a denial-of-service attack. Servers that never enabled
the h2 protocol or that only enabled it for https: and did not configure the
'H2Upgrade on' are unaffected. [bsc#1131245]
* CVE-2019-0196: Through specially crafted network input the Apache's http/2
request handler could be lead to access previously freed memory while
determining the method of a request. This resulted in the request being
misclassified and thus being processed incorrectly. [bsc#1131237]
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames: openSUSE-2019-1209
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5 (Medium)
Affected products
Recommended
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.2 (Medium)
Affected products
Recommended
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.4 (Medium)
Affected products
Recommended
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
25 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for apache2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for apache2 fixes the following issues:\n\n* CVE-2019-0211: A flaw in the Apache HTTP Server allowed less-privileged child\n processes or threads to execute arbitrary code with the privileges of the\n parent process. Attackers with control over CGI scripts or extension modules\n run by the server could have abused this issue to potentially gain super user\n privileges. [bsc#1131233]\n\n* CVE-2019-0220: The Apache HTTP server did not use a consistent strategy for\n URL normalization throughout all of its components. In particular,\n consecutive slashes were not always collapsed. Attackers could potentially\n abuse these inconsistencies to by-pass access control mechanisms and thus\n gain unauthorized access to protected parts of the service. [bsc#1131241]\n\n* CVE-2019-0217: A race condition in Apache\u0027s \u0027mod_auth_digest\u0027 when running in\n a threaded server could have allowed users with valid credentials to\n authenticate using another username, bypassing configured access control\n restrictions. [bsc#1131239]\n\n* CVE-2019-0197: When HTTP/2 support was enabled in the Apache server for a\n \u0027http\u0027 host or H2Upgrade was enabled for h2 on a \u0027https\u0027 host, an Upgrade\n request from http/1.1 to http/2 that was not the first request on a\n connection could lead to a misconfiguration and crash. This issue could have\n been abused to mount a denial-of-service attack. Servers that never enabled\n the h2 protocol or that only enabled it for https: and did not configure the\n \u0027H2Upgrade on\u0027 are unaffected. [bsc#1131245]\n\n* CVE-2019-0196: Through specially crafted network input the Apache\u0027s http/2\n request handler could be lead to access previously freed memory while\n determining the method of a request. This resulted in the request being\n misclassified and thus being processed incorrectly. [bsc#1131237]\n\n\nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2019-1209",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_1209-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2019:1209-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/RNLNPLSIVUYNHELCO7GMIQ3KIORYAK6L/#RNLNPLSIVUYNHELCO7GMIQ3KIORYAK6L"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2019:1209-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/RNLNPLSIVUYNHELCO7GMIQ3KIORYAK6L/#RNLNPLSIVUYNHELCO7GMIQ3KIORYAK6L"
},
{
"category": "self",
"summary": "SUSE Bug 1131233",
"url": "https://bugzilla.suse.com/1131233"
},
{
"category": "self",
"summary": "SUSE Bug 1131237",
"url": "https://bugzilla.suse.com/1131237"
},
{
"category": "self",
"summary": "SUSE Bug 1131239",
"url": "https://bugzilla.suse.com/1131239"
},
{
"category": "self",
"summary": "SUSE Bug 1131241",
"url": "https://bugzilla.suse.com/1131241"
},
{
"category": "self",
"summary": "SUSE Bug 1131245",
"url": "https://bugzilla.suse.com/1131245"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-0196 page",
"url": "https://www.suse.com/security/cve/CVE-2019-0196/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-0197 page",
"url": "https://www.suse.com/security/cve/CVE-2019-0197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-0211 page",
"url": "https://www.suse.com/security/cve/CVE-2019-0211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-0217 page",
"url": "https://www.suse.com/security/cve/CVE-2019-0217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-0220 page",
"url": "https://www.suse.com/security/cve/CVE-2019-0220/"
}
],
"title": "Security update for apache2",
"tracking": {
"current_release_date": "2019-04-16T08:27:23Z",
"generator": {
"date": "2019-04-16T08:27:23Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2019:1209-1",
"initial_release_date": "2019-04-16T08:27:23Z",
"revision_history": [
{
"date": "2019-04-16T08:27:23Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "apache2-2.4.33-lp150.2.17.1.i586",
"product": {
"name": "apache2-2.4.33-lp150.2.17.1.i586",
"product_id": "apache2-2.4.33-lp150.2.17.1.i586"
}
},
{
"category": "product_version",
"name": "apache2-devel-2.4.33-lp150.2.17.1.i586",
"product": {
"name": "apache2-devel-2.4.33-lp150.2.17.1.i586",
"product_id": "apache2-devel-2.4.33-lp150.2.17.1.i586"
}
},
{
"category": "product_version",
"name": "apache2-event-2.4.33-lp150.2.17.1.i586",
"product": {
"name": "apache2-event-2.4.33-lp150.2.17.1.i586",
"product_id": "apache2-event-2.4.33-lp150.2.17.1.i586"
}
},
{
"category": "product_version",
"name": "apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"product": {
"name": "apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"product_id": "apache2-example-pages-2.4.33-lp150.2.17.1.i586"
}
},
{
"category": "product_version",
"name": "apache2-prefork-2.4.33-lp150.2.17.1.i586",
"product": {
"name": "apache2-prefork-2.4.33-lp150.2.17.1.i586",
"product_id": "apache2-prefork-2.4.33-lp150.2.17.1.i586"
}
},
{
"category": "product_version",
"name": "apache2-utils-2.4.33-lp150.2.17.1.i586",
"product": {
"name": "apache2-utils-2.4.33-lp150.2.17.1.i586",
"product_id": "apache2-utils-2.4.33-lp150.2.17.1.i586"
}
},
{
"category": "product_version",
"name": "apache2-worker-2.4.33-lp150.2.17.1.i586",
"product": {
"name": "apache2-worker-2.4.33-lp150.2.17.1.i586",
"product_id": "apache2-worker-2.4.33-lp150.2.17.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "apache2-doc-2.4.33-lp150.2.17.1.noarch",
"product": {
"name": "apache2-doc-2.4.33-lp150.2.17.1.noarch",
"product_id": "apache2-doc-2.4.33-lp150.2.17.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "apache2-2.4.33-lp150.2.17.1.x86_64",
"product": {
"name": "apache2-2.4.33-lp150.2.17.1.x86_64",
"product_id": "apache2-2.4.33-lp150.2.17.1.x86_64"
}
},
{
"category": "product_version",
"name": "apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"product": {
"name": "apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"product_id": "apache2-devel-2.4.33-lp150.2.17.1.x86_64"
}
},
{
"category": "product_version",
"name": "apache2-event-2.4.33-lp150.2.17.1.x86_64",
"product": {
"name": "apache2-event-2.4.33-lp150.2.17.1.x86_64",
"product_id": "apache2-event-2.4.33-lp150.2.17.1.x86_64"
}
},
{
"category": "product_version",
"name": "apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"product": {
"name": "apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"product_id": "apache2-example-pages-2.4.33-lp150.2.17.1.x86_64"
}
},
{
"category": "product_version",
"name": "apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"product": {
"name": "apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"product_id": "apache2-prefork-2.4.33-lp150.2.17.1.x86_64"
}
},
{
"category": "product_version",
"name": "apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"product": {
"name": "apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"product_id": "apache2-utils-2.4.33-lp150.2.17.1.x86_64"
}
},
{
"category": "product_version",
"name": "apache2-worker-2.4.33-lp150.2.17.1.x86_64",
"product": {
"name": "apache2-worker-2.4.33-lp150.2.17.1.x86_64",
"product_id": "apache2-worker-2.4.33-lp150.2.17.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.0",
"product": {
"name": "openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-2.4.33-lp150.2.17.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586"
},
"product_reference": "apache2-2.4.33-lp150.2.17.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-2.4.33-lp150.2.17.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64"
},
"product_reference": "apache2-2.4.33-lp150.2.17.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-devel-2.4.33-lp150.2.17.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586"
},
"product_reference": "apache2-devel-2.4.33-lp150.2.17.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-devel-2.4.33-lp150.2.17.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64"
},
"product_reference": "apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-doc-2.4.33-lp150.2.17.1.noarch as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch"
},
"product_reference": "apache2-doc-2.4.33-lp150.2.17.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-event-2.4.33-lp150.2.17.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586"
},
"product_reference": "apache2-event-2.4.33-lp150.2.17.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-event-2.4.33-lp150.2.17.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64"
},
"product_reference": "apache2-event-2.4.33-lp150.2.17.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-example-pages-2.4.33-lp150.2.17.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586"
},
"product_reference": "apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-example-pages-2.4.33-lp150.2.17.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64"
},
"product_reference": "apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-prefork-2.4.33-lp150.2.17.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586"
},
"product_reference": "apache2-prefork-2.4.33-lp150.2.17.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-prefork-2.4.33-lp150.2.17.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64"
},
"product_reference": "apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-utils-2.4.33-lp150.2.17.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586"
},
"product_reference": "apache2-utils-2.4.33-lp150.2.17.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-utils-2.4.33-lp150.2.17.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64"
},
"product_reference": "apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-worker-2.4.33-lp150.2.17.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586"
},
"product_reference": "apache2-worker-2.4.33-lp150.2.17.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-worker-2.4.33-lp150.2.17.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
},
"product_reference": "apache2-worker-2.4.33-lp150.2.17.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-0196",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-0196"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-0196",
"url": "https://www.suse.com/security/cve/CVE-2019-0196"
},
{
"category": "external",
"summary": "SUSE Bug 1131237 for CVE-2019-0196",
"url": "https://bugzilla.suse.com/1131237"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-04-16T08:27:23Z",
"details": "moderate"
}
],
"title": "CVE-2019-0196"
},
{
"cve": "CVE-2019-0197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-0197"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-0197",
"url": "https://www.suse.com/security/cve/CVE-2019-0197"
},
{
"category": "external",
"summary": "SUSE Bug 1131245 for CVE-2019-0197",
"url": "https://bugzilla.suse.com/1131245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-04-16T08:27:23Z",
"details": "moderate"
}
],
"title": "CVE-2019-0197"
},
{
"cve": "CVE-2019-0211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-0211"
}
],
"notes": [
{
"category": "general",
"text": "In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child processes or threads (including scripts executed by an in-process scripting interpreter) could execute arbitrary code with the privileges of the parent process (usually root) by manipulating the scoreboard. Non-Unix systems are not affected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-0211",
"url": "https://www.suse.com/security/cve/CVE-2019-0211"
},
{
"category": "external",
"summary": "SUSE Bug 1131233 for CVE-2019-0211",
"url": "https://bugzilla.suse.com/1131233"
},
{
"category": "external",
"summary": "SUSE Bug 1132978 for CVE-2019-0211",
"url": "https://bugzilla.suse.com/1132978"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-04-16T08:27:23Z",
"details": "moderate"
}
],
"title": "CVE-2019-0211"
},
{
"cve": "CVE-2019-0217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-0217"
}
],
"notes": [
{
"category": "general",
"text": "In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-0217",
"url": "https://www.suse.com/security/cve/CVE-2019-0217"
},
{
"category": "external",
"summary": "SUSE Bug 1131239 for CVE-2019-0217",
"url": "https://bugzilla.suse.com/1131239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-04-16T08:27:23Z",
"details": "moderate"
}
],
"title": "CVE-2019-0217"
},
{
"cve": "CVE-2019-0220",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-0220"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. When the path component of a request URL contains multiple consecutive slashes (\u0027/\u0027), directives such as LocationMatch and RewriteRule must account for duplicates in regular expressions while other aspects of the servers processing will implicitly collapse them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-0220",
"url": "https://www.suse.com/security/cve/CVE-2019-0220"
},
{
"category": "external",
"summary": "SUSE Bug 1131241 for CVE-2019-0220",
"url": "https://bugzilla.suse.com/1131241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.17.1.noarch",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.17.1.x86_64",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.i586",
"openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.17.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-04-16T08:27:23Z",
"details": "moderate"
}
],
"title": "CVE-2019-0220"
}
]
}
RHSA-2019:2343
Vulnerability from csaf_redhat - Published: 2019-08-06 13:51 - Updated: 2026-05-14 22:24Summary
Red Hat Security Advisory: httpd security and bug fix update
Severity
Moderate
Notes
Topic: An update for httpd is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.
Security Fix(es):
* httpd: mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)
* httpd: URL normalization inconsistency (CVE-2019-0220)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.7 Release Notes linked from the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.
7.1 (High)
Affected products
Fixed
204 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-0:2.4.6-90.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_session-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-0:2.4.6-90.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-devel-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-devel-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-manual-0:2.4.6-90.el7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-tools-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-tools-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ldap-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ldap-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_session-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_session-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ssl-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ssl-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-0:2.4.6-90.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_session-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-0:2.4.6-90.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-manual-0:2.4.6-90.el7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_session-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_session-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. When the path component of a request URL contains multiple consecutive slashes ('/'), directives such as LocationMatch and RewriteRule must account for duplicates in regular expressions while other aspects of the servers processing will implicitly collapse them.
CWE-41 - Improper Resolution of Path EquivalenceAffected products
Fixed
204 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-0:2.4.6-90.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_session-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-0:2.4.6-90.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-devel-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-devel-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-manual-0:2.4.6-90.el7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-tools-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:httpd-tools-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ldap-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ldap-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_session-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_session-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ssl-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7:mod_ssl-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-0:2.4.6-90.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_session-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-0:2.4.6-90.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-manual-0:2.4.6-90.el7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_session-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_session-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
References
16 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for httpd is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.\n\nSecurity Fix(es):\n\n* httpd: mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)\n\n* httpd: URL normalization inconsistency (CVE-2019-0220)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.7 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2019:2343",
"url": "https://access.redhat.com/errata/RHSA-2019:2343"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.7_release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.7_release_notes/index"
},
{
"category": "external",
"summary": "1695020",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020"
},
{
"category": "external",
"summary": "1695036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695036"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_2343.json"
}
],
"title": "Red Hat Security Advisory: httpd security and bug fix update",
"tracking": {
"current_release_date": "2026-05-14T22:24:36+00:00",
"generator": {
"date": "2026-05-14T22:24:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.0"
}
},
"id": "RHSA-2019:2343",
"initial_release_date": "2019-08-06T13:51:11+00:00",
"revision_history": [
{
"date": "2019-08-06T13:51:11+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-08-06T13:51:11+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-14T22:24:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"product_id": "httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.4.6-90.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_proxy_html-1:2.4.6-90.el7.x86_64",
"product": {
"name": "mod_proxy_html-1:2.4.6-90.el7.x86_64",
"product_id": "mod_proxy_html-1:2.4.6-90.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_proxy_html@2.4.6-90.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "mod_ldap-0:2.4.6-90.el7.x86_64",
"product": {
"name": "mod_ldap-0:2.4.6-90.el7.x86_64",
"product_id": "mod_ldap-0:2.4.6-90.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ldap@2.4.6-90.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.4.6-90.el7.x86_64",
"product": {
"name": "mod_ssl-1:2.4.6-90.el7.x86_64",
"product_id": "mod_ssl-1:2.4.6-90.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.4.6-90.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.4.6-90.el7.x86_64",
"product": {
"name": "httpd-devel-0:2.4.6-90.el7.x86_64",
"product_id": "httpd-devel-0:2.4.6-90.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.4.6-90.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.4.6-90.el7.x86_64",
"product": {
"name": "httpd-0:2.4.6-90.el7.x86_64",
"product_id": "httpd-0:2.4.6-90.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.4.6-90.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_session-0:2.4.6-90.el7.x86_64",
"product": {
"name": "mod_session-0:2.4.6-90.el7.x86_64",
"product_id": "mod_session-0:2.4.6-90.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_session@2.4.6-90.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.4.6-90.el7.x86_64",
"product": {
"name": "httpd-tools-0:2.4.6-90.el7.x86_64",
"product_id": "httpd-tools-0:2.4.6-90.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.4.6-90.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.4.6-90.el7.noarch",
"product": {
"name": "httpd-manual-0:2.4.6-90.el7.noarch",
"product_id": "httpd-manual-0:2.4.6-90.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.4.6-90.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.4.6-90.el7.src",
"product": {
"name": "httpd-0:2.4.6-90.el7.src",
"product_id": "httpd-0:2.4.6-90.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.4.6-90.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.4.6-90.el7.s390x",
"product": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.s390x",
"product_id": "httpd-debuginfo-0:2.4.6-90.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.4.6-90.el7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "mod_proxy_html-1:2.4.6-90.el7.s390x",
"product": {
"name": "mod_proxy_html-1:2.4.6-90.el7.s390x",
"product_id": "mod_proxy_html-1:2.4.6-90.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_proxy_html@2.4.6-90.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "mod_ldap-0:2.4.6-90.el7.s390x",
"product": {
"name": "mod_ldap-0:2.4.6-90.el7.s390x",
"product_id": "mod_ldap-0:2.4.6-90.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ldap@2.4.6-90.el7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.4.6-90.el7.s390x",
"product": {
"name": "mod_ssl-1:2.4.6-90.el7.s390x",
"product_id": "mod_ssl-1:2.4.6-90.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.4.6-90.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.4.6-90.el7.s390x",
"product": {
"name": "httpd-devel-0:2.4.6-90.el7.s390x",
"product_id": "httpd-devel-0:2.4.6-90.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.4.6-90.el7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.4.6-90.el7.s390x",
"product": {
"name": "httpd-0:2.4.6-90.el7.s390x",
"product_id": "httpd-0:2.4.6-90.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.4.6-90.el7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "mod_session-0:2.4.6-90.el7.s390x",
"product": {
"name": "mod_session-0:2.4.6-90.el7.s390x",
"product_id": "mod_session-0:2.4.6-90.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_session@2.4.6-90.el7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.4.6-90.el7.s390x",
"product": {
"name": "httpd-tools-0:2.4.6-90.el7.s390x",
"product_id": "httpd-tools-0:2.4.6-90.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.4.6-90.el7?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"product": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"product_id": "httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.4.6-90.el7?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64",
"product": {
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64",
"product_id": "mod_proxy_html-1:2.4.6-90.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_proxy_html@2.4.6-90.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "mod_ldap-0:2.4.6-90.el7.ppc64",
"product": {
"name": "mod_ldap-0:2.4.6-90.el7.ppc64",
"product_id": "mod_ldap-0:2.4.6-90.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ldap@2.4.6-90.el7?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.4.6-90.el7.ppc64",
"product": {
"name": "mod_ssl-1:2.4.6-90.el7.ppc64",
"product_id": "mod_ssl-1:2.4.6-90.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.4.6-90.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.4.6-90.el7.ppc64",
"product": {
"name": "httpd-devel-0:2.4.6-90.el7.ppc64",
"product_id": "httpd-devel-0:2.4.6-90.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.4.6-90.el7?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.4.6-90.el7.ppc64",
"product": {
"name": "httpd-0:2.4.6-90.el7.ppc64",
"product_id": "httpd-0:2.4.6-90.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.4.6-90.el7?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "mod_session-0:2.4.6-90.el7.ppc64",
"product": {
"name": "mod_session-0:2.4.6-90.el7.ppc64",
"product_id": "mod_session-0:2.4.6-90.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_session@2.4.6-90.el7?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.4.6-90.el7.ppc64",
"product": {
"name": "httpd-tools-0:2.4.6-90.el7.ppc64",
"product_id": "httpd-tools-0:2.4.6-90.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.4.6-90.el7?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"product": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"product_id": "httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.4.6-90.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"product": {
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"product_id": "mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_proxy_html@2.4.6-90.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "mod_ldap-0:2.4.6-90.el7.ppc64le",
"product": {
"name": "mod_ldap-0:2.4.6-90.el7.ppc64le",
"product_id": "mod_ldap-0:2.4.6-90.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ldap@2.4.6-90.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.4.6-90.el7.ppc64le",
"product": {
"name": "mod_ssl-1:2.4.6-90.el7.ppc64le",
"product_id": "mod_ssl-1:2.4.6-90.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.4.6-90.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.4.6-90.el7.ppc64le",
"product": {
"name": "httpd-devel-0:2.4.6-90.el7.ppc64le",
"product_id": "httpd-devel-0:2.4.6-90.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.4.6-90.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.4.6-90.el7.ppc64le",
"product": {
"name": "httpd-0:2.4.6-90.el7.ppc64le",
"product_id": "httpd-0:2.4.6-90.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.4.6-90.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "mod_session-0:2.4.6-90.el7.ppc64le",
"product": {
"name": "mod_session-0:2.4.6-90.el7.ppc64le",
"product_id": "mod_session-0:2.4.6-90.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_session@2.4.6-90.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.4.6-90.el7.ppc64le",
"product": {
"name": "httpd-tools-0:2.4.6-90.el7.ppc64le",
"product_id": "httpd-tools-0:2.4.6-90.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.4.6-90.el7?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-0:2.4.6-90.el7.src"
},
"product_reference": "httpd-0:2.4.6-90.el7.src",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.4.6-90.el7.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch"
},
"product_reference": "httpd-manual-0:2.4.6-90.el7.noarch",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_session-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_session-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_session-0:2.4.6-90.el7.s390x"
},
"product_reference": "mod_session-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_session-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.src"
},
"product_reference": "httpd-0:2.4.6-90.el7.src",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.4.6-90.el7.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch"
},
"product_reference": "httpd-manual-0:2.4.6-90.el7.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_session-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_session-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.s390x"
},
"product_reference": "mod_session-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_session-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-0:2.4.6-90.el7.src"
},
"product_reference": "httpd-0:2.4.6-90.el7.src",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-devel-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-devel-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.4.6-90.el7.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-manual-0:2.4.6-90.el7.noarch"
},
"product_reference": "httpd-manual-0:2.4.6-90.el7.noarch",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-tools-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:httpd-tools-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_ldap-0:2.4.6-90.el7.s390x"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_ldap-0:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_session-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_session-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_session-0:2.4.6-90.el7.s390x"
},
"product_reference": "mod_session-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_session-0:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_session-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_ssl-1:2.4.6-90.el7.s390x"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7:mod_ssl-1:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-0:2.4.6-90.el7.src"
},
"product_reference": "httpd-0:2.4.6-90.el7.src",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.4.6-90.el7.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch"
},
"product_reference": "httpd-manual-0:2.4.6-90.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_session-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_session-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_session-0:2.4.6-90.el7.s390x"
},
"product_reference": "mod_session-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_session-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-0:2.4.6-90.el7.src"
},
"product_reference": "httpd-0:2.4.6-90.el7.src",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.4.6-90.el7.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-manual-0:2.4.6-90.el7.noarch"
},
"product_reference": "httpd-manual-0:2.4.6-90.el7.noarch",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.s390x"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_session-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_session-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_session-0:2.4.6-90.el7.s390x"
},
"product_reference": "mod_session-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_session-0:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_session-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.s390x"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.src"
},
"product_reference": "httpd-0:2.4.6-90.el7.src",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-devel-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.4.6-90.el7.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch"
},
"product_reference": "httpd-manual-0:2.4.6-90.el7.noarch",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64"
},
"product_reference": "httpd-tools-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_ldap-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_proxy_html-1:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_session-0:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_session-0:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.s390x"
},
"product_reference": "mod_session-0:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_session-0:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.6-90.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64"
},
"product_reference": "mod_ssl-1:2.4.6-90.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-0217",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2019-04-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1695020"
}
],
"notes": [
{
"category": "description",
"text": "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: mod_auth_digest: access control bypass due to race condition",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-0217"
},
{
"category": "external",
"summary": "RHBZ#1695020",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-0217",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0217"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0217",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0217"
},
{
"category": "external",
"summary": "http://www.apache.org/dist/httpd/CHANGES_2.4",
"url": "http://www.apache.org/dist/httpd/CHANGES_2.4"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_24.html",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
}
],
"release_date": "2019-04-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-08-06T13:51:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
"product_ids": [
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:2343"
},
{
"category": "workaround",
"details": "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.",
"product_ids": [
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "httpd: mod_auth_digest: access control bypass due to race condition"
},
{
"cve": "CVE-2019-0220",
"cwe": {
"id": "CWE-41",
"name": "Improper Resolution of Path Equivalence"
},
"discovery_date": "2019-04-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1695036"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. When the path component of a request URL contains multiple consecutive slashes (\u0027/\u0027), directives such as LocationMatch and RewriteRule must account for duplicates in regular expressions while other aspects of the servers processing will implicitly collapse them.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: URL normalization inconsistency",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Low, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-0220"
},
{
"category": "external",
"summary": "RHBZ#1695036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695036"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-0220",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0220"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0220",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0220"
},
{
"category": "external",
"summary": "http://www.apache.org/dist/httpd/CHANGES_2.4",
"url": "http://www.apache.org/dist/httpd/CHANGES_2.4"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_24.html",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
}
],
"release_date": "2019-04-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-08-06T13:51:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
"product_ids": [
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:2343"
},
{
"category": "workaround",
"details": "This flaw can be mitigation by replacing multiple consecutive slashes, used in directives that match against the path component of the request URL with regular expressions.",
"product_ids": [
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Client-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Client-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7ComputeNode-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7ComputeNode-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Server-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Server-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-7.7:mod_ssl-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.src",
"7Workstation-optional-7.7:httpd-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-debuginfo-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-devel-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:httpd-manual-0:2.4.6-90.el7.noarch",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:httpd-tools-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ldap-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_proxy_html-1:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_session-0:2.4.6-90.el7.x86_64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.ppc64le",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.s390x",
"7Workstation-optional-7.7:mod_ssl-1:2.4.6-90.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "httpd: URL normalization inconsistency"
}
]
}
RHSA-2019:3436
Vulnerability from csaf_redhat - Published: 2019-11-05 21:24 - Updated: 2026-05-14 22:24Summary
Red Hat Security Advisory: httpd:2.4 security and bug fix update
Severity
Moderate
Notes
Topic: An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.
Security Fix(es):
* httpd: mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)
* httpd: URL normalization inconsistency (CVE-2019-0220)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.1 Release Notes linked from the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.
7.1 (High)
Affected products
Fixed
80 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. When the path component of a request URL contains multiple consecutive slashes ('/'), directives such as LocationMatch and RewriteRule must account for duplicates in regular expressions while other aspects of the servers processing will implicitly collapse them.
CWE-41 - Improper Resolution of Path EquivalenceAffected products
Fixed
80 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
References
20 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.\n\nSecurity Fix(es):\n\n* httpd: mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)\n\n* httpd: URL normalization inconsistency (CVE-2019-0220)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.1 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2019:3436",
"url": "https://access.redhat.com/errata/RHSA-2019:3436"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.1_release_notes/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.1_release_notes/"
},
{
"category": "external",
"summary": "1669221",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1669221"
},
{
"category": "external",
"summary": "1673022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1673022"
},
{
"category": "external",
"summary": "1695020",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020"
},
{
"category": "external",
"summary": "1695036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695036"
},
{
"category": "external",
"summary": "1724549",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1724549"
},
{
"category": "external",
"summary": "1730721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1730721"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3436.json"
}
],
"title": "Red Hat Security Advisory: httpd:2.4 security and bug fix update",
"tracking": {
"current_release_date": "2026-05-14T22:24:37+00:00",
"generator": {
"date": "2026-05-14T22:24:37+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.0"
}
},
"id": "RHSA-2019:3436",
"initial_release_date": "2019-11-05T21:24:18+00:00",
"revision_history": [
{
"date": "2019-11-05T21:24:18+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-11-05T21:24:18+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-14T22:24:37+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"product": {
"name": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src (httpd:2.4)",
"product_id": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=src\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"product": {
"name": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src (httpd:2.4)",
"product_id": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_http2@1.11.3-3.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=src\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"product": {
"name": "httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch (httpd:2.4)",
"product_id": "httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-filesystem@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=noarch\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"product": {
"name": "httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch (httpd:2.4)",
"product_id": "httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=noarch\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debugsource@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_http2@1.11.3-3.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_http2-debuginfo@1.11.3-3.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_http2-debugsource@1.11.3-3.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ldap@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_md@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_md-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_proxy_html@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_session@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product": {
"name": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4)",
"product_id": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=aarch64\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debugsource@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_http2@1.11.3-3.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_http2-debuginfo@1.11.3-3.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_http2-debugsource@1.11.3-3.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ldap@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_md@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_md-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_proxy_html@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_session@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product": {
"name": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4)",
"product_id": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=ppc64le\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debugsource@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_http2@1.11.3-3.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_http2-debuginfo@1.11.3-3.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_http2-debugsource@1.11.3-3.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ldap@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_md@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_md-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_proxy_html@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_session@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product": {
"name": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4)",
"product_id": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=s390x\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debugsource@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_http2@1.11.3-3.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_http2-debuginfo@1.11.3-3.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_http2-debugsource@1.11.3-3.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ldap@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_md@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_md-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_proxy_html@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_session@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product": {
"name": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4)",
"product_id": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-16.module%2Bel8.1.0%2B4134%2Be6bad0ed?arch=x86_64\u0026epoch=1\u0026rpmmod=httpd:2.4:8010020190829143335:cdc1202b"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4"
},
"product_reference": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4"
},
"product_reference": "httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4"
},
"product_reference": "httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4"
},
"product_reference": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4"
},
"product_reference": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4"
},
"product_reference": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4"
},
"product_reference": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64 (httpd:2.4) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
},
"product_reference": "mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"relates_to_product_reference": "AppStream-8.1.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-0217",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2019-04-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1695020"
}
],
"notes": [
{
"category": "description",
"text": "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: mod_auth_digest: access control bypass due to race condition",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-0217"
},
{
"category": "external",
"summary": "RHBZ#1695020",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695020"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-0217",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0217"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0217",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0217"
},
{
"category": "external",
"summary": "http://www.apache.org/dist/httpd/CHANGES_2.4",
"url": "http://www.apache.org/dist/httpd/CHANGES_2.4"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_24.html",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
}
],
"release_date": "2019-04-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-11-05T21:24:18+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
"product_ids": [
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:3436"
},
{
"category": "workaround",
"details": "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.",
"product_ids": [
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "httpd: mod_auth_digest: access control bypass due to race condition"
},
{
"cve": "CVE-2019-0220",
"cwe": {
"id": "CWE-41",
"name": "Improper Resolution of Path Equivalence"
},
"discovery_date": "2019-04-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1695036"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. When the path component of a request URL contains multiple consecutive slashes (\u0027/\u0027), directives such as LocationMatch and RewriteRule must account for duplicates in regular expressions while other aspects of the servers processing will implicitly collapse them.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: URL normalization inconsistency",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Low, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-0220"
},
{
"category": "external",
"summary": "RHBZ#1695036",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695036"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-0220",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0220"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0220",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0220"
},
{
"category": "external",
"summary": "http://www.apache.org/dist/httpd/CHANGES_2.4",
"url": "http://www.apache.org/dist/httpd/CHANGES_2.4"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_24.html",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
}
],
"release_date": "2019-04-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-11-05T21:24:18+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
"product_ids": [
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:3436"
},
{
"category": "workaround",
"details": "This flaw can be mitigation by replacing multiple consecutive slashes, used in directives that match against the path component of the request URL with regular expressions.",
"product_ids": [
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:httpd-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-debugsource-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-devel-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-filesystem-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-manual-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.noarch::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:httpd-tools-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.src::httpd:2.4",
"AppStream-8.1.0:mod_http2-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debuginfo-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_http2-debugsource-0:1.11.3-3.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ldap-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_md-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_proxy_html-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_session-debuginfo-0:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.aarch64::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.ppc64le::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.s390x::httpd:2.4",
"AppStream-8.1.0:mod_ssl-debuginfo-1:2.4.37-16.module+el8.1.0+4134+e6bad0ed.x86_64::httpd:2.4"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "httpd: URL normalization inconsistency"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…