RHSA-2021:3837

See a problem?
Please try reporting it to the source first.

Source

https://access.redhat.com/errata/RHSA-2021:3837

Import Source

https://security.access.redhat.com/data/osv/RHSA-2021:3837.json

JSON Data

https://api.test.osv.dev/v1/vulns/RHSA-2021:3837

Upstream

CVE-2021-40438

Published

2024-09-13T17:28:14Z

Modified

2025-09-11T11:43:10Z

Severity

9.0 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H CVSS Calculator

Summary

Red Hat Security Advisory: httpd:2.4 security update

Details

References

Affected packages

Red Hat:rhel_eus:8.1::appstream / httpd-2.4.37

Package

Name: httpd-2.4.37
Purl: pkg:rpm/redhat/httpd

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / httpd-debuginfo-2.4.37

Package

Name: httpd-debuginfo-2.4.37
Purl: pkg:rpm/redhat/httpd-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / httpd-debugsource-2.4.37

Package

Name: httpd-debugsource-2.4.37
Purl: pkg:rpm/redhat/httpd-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / httpd-devel-2.4.37

Package

Name: httpd-devel-2.4.37
Purl: pkg:rpm/redhat/httpd-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / httpd-filesystem-2.4.37

Package

Name: httpd-filesystem-2.4.37
Purl: pkg:rpm/redhat/httpd-filesystem

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.noarch.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / httpd-manual-2.4.37

Package

Name: httpd-manual-2.4.37
Purl: pkg:rpm/redhat/httpd-manual

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.noarch.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / httpd-tools-2.4.37

Package

Name: httpd-tools-2.4.37
Purl: pkg:rpm/redhat/httpd-tools

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / httpd-tools-debuginfo-2.4.37

Package

Name: httpd-tools-debuginfo-2.4.37
Purl: pkg:rpm/redhat/httpd-tools-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / mod_http2-1.11.3

Package

Name: mod_http2-1.11.3
Purl: pkg:rpm/redhat/mod_http2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.module+el8.1.0+7763+babdfe5b.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / mod_http2-debuginfo-1.11.3

Package

Name: mod_http2-debuginfo-1.11.3
Purl: pkg:rpm/redhat/mod_http2-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.module+el8.1.0+7763+babdfe5b.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / mod_http2-debugsource-1.11.3

Package

Name: mod_http2-debugsource-1.11.3
Purl: pkg:rpm/redhat/mod_http2-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.module+el8.1.0+7763+babdfe5b.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / mod_ldap-2.4.37

Package

Name: mod_ldap-2.4.37
Purl: pkg:rpm/redhat/mod_ldap

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / mod_ldap-debuginfo-2.4.37

Package

Name: mod_ldap-debuginfo-2.4.37
Purl: pkg:rpm/redhat/mod_ldap-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / mod_md-2.4.37

Package

Name: mod_md-2.4.37
Purl: pkg:rpm/redhat/mod_md

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / mod_md-debuginfo-2.4.37

Package

Name: mod_md-debuginfo-2.4.37
Purl: pkg:rpm/redhat/mod_md-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / mod_proxy_html-2.4.37

Package

Name: mod_proxy_html-2.4.37
Purl: pkg:rpm/redhat/mod_proxy_html

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / mod_proxy_html-debuginfo-2.4.37

Package

Name: mod_proxy_html-debuginfo-2.4.37
Purl: pkg:rpm/redhat/mod_proxy_html-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / mod_session-2.4.37

Package

Name: mod_session-2.4.37
Purl: pkg:rpm/redhat/mod_session

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / mod_session-debuginfo-2.4.37

Package

Name: mod_session-debuginfo-2.4.37
Purl: pkg:rpm/redhat/mod_session-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / mod_ssl-2.4.37

Package

Name: mod_ssl-2.4.37
Purl: pkg:rpm/redhat/mod_ssl

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2

Red Hat:rhel_eus:8.1::appstream / mod_ssl-debuginfo-2.4.37

Package

Name: mod_ssl-debuginfo-2.4.37
Purl: pkg:rpm/redhat/mod_ssl-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

16.module+el8.1.0+12900+7e6e5641.1.x86_64.rpm-httpd:2