RHSA-2019:3436

See a problem?
Please try reporting it to the source first.

Source

https://access.redhat.com/errata/RHSA-2019:3436

Import Source

https://security.access.redhat.com/data/osv/RHSA-2019:3436.json

JSON Data

https://api.test.osv.dev/v1/vulns/RHSA-2019:3436

Upstream

CVE-2019-0217

CVE-2019-0220

Published

2024-09-13T19:55:21Z

Modified

2025-09-11T11:15:46Z

Severity

7.1 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N CVSS Calculator

Summary

Red Hat Security Advisory: httpd:2.4 security and bug fix update

Details

References

Affected packages

Red Hat:enterprise_linux:8::appstream

httpd-2.4.37

Package

Name: httpd-2.4.37
Purl: pkg:rpm/redhat/httpd

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

httpd-debuginfo-2.4.37

Package

Name: httpd-debuginfo-2.4.37
Purl: pkg:rpm/redhat/httpd-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

httpd-debugsource-2.4.37

Package

Name: httpd-debugsource-2.4.37
Purl: pkg:rpm/redhat/httpd-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

httpd-devel-2.4.37

Package

Name: httpd-devel-2.4.37
Purl: pkg:rpm/redhat/httpd-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

httpd-filesystem-2.4.37

Package

Name: httpd-filesystem-2.4.37
Purl: pkg:rpm/redhat/httpd-filesystem

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.noarch.rpm-httpd:2

httpd-manual-2.4.37

Package

Name: httpd-manual-2.4.37
Purl: pkg:rpm/redhat/httpd-manual

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.noarch.rpm-httpd:2

httpd-tools-2.4.37

Package

Name: httpd-tools-2.4.37
Purl: pkg:rpm/redhat/httpd-tools

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

httpd-tools-debuginfo-2.4.37

Package

Name: httpd-tools-debuginfo-2.4.37
Purl: pkg:rpm/redhat/httpd-tools-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

mod_http2-1.11.3

Package

Name: mod_http2-1.11.3
Purl: pkg:rpm/redhat/mod_http2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

mod_http2-debuginfo-1.11.3

Package

Name: mod_http2-debuginfo-1.11.3
Purl: pkg:rpm/redhat/mod_http2-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

mod_http2-debugsource-1.11.3

Package

Name: mod_http2-debugsource-1.11.3
Purl: pkg:rpm/redhat/mod_http2-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

mod_ldap-2.4.37

Package

Name: mod_ldap-2.4.37
Purl: pkg:rpm/redhat/mod_ldap

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

mod_ldap-debuginfo-2.4.37

Package

Name: mod_ldap-debuginfo-2.4.37
Purl: pkg:rpm/redhat/mod_ldap-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

mod_md-2.4.37

Package

Name: mod_md-2.4.37
Purl: pkg:rpm/redhat/mod_md

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

mod_md-debuginfo-2.4.37

Package

Name: mod_md-debuginfo-2.4.37
Purl: pkg:rpm/redhat/mod_md-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

mod_proxy_html-2.4.37

Package

Name: mod_proxy_html-2.4.37
Purl: pkg:rpm/redhat/mod_proxy_html

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

mod_proxy_html-debuginfo-2.4.37

Package

Name: mod_proxy_html-debuginfo-2.4.37
Purl: pkg:rpm/redhat/mod_proxy_html-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

mod_session-2.4.37

Package

Name: mod_session-2.4.37
Purl: pkg:rpm/redhat/mod_session

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

mod_session-debuginfo-2.4.37

Package

Name: mod_session-debuginfo-2.4.37
Purl: pkg:rpm/redhat/mod_session-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

mod_ssl-2.4.37

Package

Name: mod_ssl-2.4.37
Purl: pkg:rpm/redhat/mod_ssl

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2

mod_ssl-debuginfo-2.4.37

Package

Name: mod_ssl-debuginfo-2.4.37
Purl: pkg:rpm/redhat/mod_ssl-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+4134+e6bad0ed.x86_64.rpm-httpd:2